The Implant Centre is committed to protecting your privacy. The General Data Protection Regulation (GDPR) is a landmark privacy law affecting the European Union (EU).
The following is an overview of the key points and how Ceramic Designs Lab understands its compliance obligations; further information and guidelines on the GDPR may be obtained from the Information Commissioner’s Office website.
Our full Privacy Notice can be found here.
What is the GDPR?
The General Data Protection Regulation (GDPR) is new privacy legislation that replaces the EU Data Protection Directive (Directive 95/46/EC) within the European Union. The GDPR regulates the collection, use, transfer, and sharing of personal data with the key purpose of protecting it.
What constitutes personal data?
Personal data includes any information related to a living resident or citizen of the EU that can be used to directly or indirectly identify the person. It can be anything from a name, a photo, an email address, medical information, or even an IP address or cookie.
Who does the GDPR affect?
The GDPR affects companies processing the personal data of individuals residing in the European Union, regardless of a company’s location. It applies not only to
How will the GDPR affect businesses?
The GDPR requires
What new user rights does GDPR regulate?
- Right to Access. EU residents and citizens (or “Data Subjects,” as they are called in the regulation) have the right to obtain confirmation from the
organisationthat has collected their data as to whether their personal data is being processed, where, and for what purpose. They also currently have (and will continue to have under the GDPR) the right to receive a copy of this personal data.
- Right to Be Forgotten (or Data Erasure). Data Subjects can demand that the
organisationserase their personal data and cease further dissemination of the data.
- Data Portability. Data Subjects can receive
the personaldata concerning them (which they have previously provided) and have the right to transmit that data to another organisation.
Ceramic Designs Lab and GDPR
In summary, we collect information from you in the following ways
- When you call us
- When you email us
- When you complete a form on the website
- When you are referred to us by another practitioner
- When you complete a form at a clinic
This information may include
- Email address
- First name
- Last name
- Phone number
- Date of Birth
- Medical history
This information is stored in our secure Servers and/or on the Servers of our third party service providers (See our Privacy Notice) and is accessible only by Ceramic Designs Lab Staff.
If any information is provided on paper, the paper record is filed securely after transferring to our computer systems.
We collect this information to be able to provide our services and optimum health care to you.
We may ask for your explicit consent to send you information about implants and our services, which you can choose to receive, or not. We keep a record of your consent on our database. These records are kept securely and you can request to see the information, have it corrected, or be removed from our database at any time.
We keep patient records for a minimum of 10 years and this may be longer for complex records in order to meet our legal requirements. We keep non-patient personal data for as long as you wish to continue receiving information; we will ask for your consent every 2 years.
If we intend to refer a patient to another practitioner or to secondary care such as a hospital we will ask your permission before the referral is made and before your personal data is shared.