Int2Med Data Protection Policy
The General Data Protection Regulations (GDPR) 2016
The GDPR regulates the processing of personal data across Europe and for European citizens wherever they are in the world. While Int2Med does not process personal data on a daily basis. GDPR requires us to give information about our data processing activities and how we deal with the information that we hold.
Personal data is defined as any information relating to a natural, legal, living individual from which he or she can be directly or indirectly identified (such as a person's name, address or date of birth).
Sensitive personal data are specific types of personal data which include race, ethnic origin, political opinion, religion or religious beliefs, trade union membership, genetic data, biometrics used for identification, health, sex life or sexual orientation.
Int2med does not collect sensitive personal data or personal data with the exception of the contact details (name, professional e-mail address, correspondence address and telephone number(s) of professionals acting within their capacity on behalf of their hospital or trust. The personal data that we collect is information necessary for us to provide the goods and services to these institutions.
Information is held on our database, in back-up and archive form. Hard copies of information on our database are occasionally made where necessary to provide our services. Photocopies may occasionally be made of manual records.
Access to our database is restricted through the use of passwords. Records may be retrieved, consulted, adapted, modified or copied from time to time. Records are reviewed periodically and non-relevant records are deleted in-line with our data retention policies. We will endeavour to take all reasonable steps to keep all data accurate and up to date.
Information is not shared with third parties with the exception of;
Shipments of Allograft tissue where a contact person’s name, address and telephone number is required by both the courier and the tissue storage facility in order to meet Human Tissue Authority regulations.
Shipment of loan sets where the courier requires the name and address of the responsible person to whom the kit is being loaned.
Shipment of ordered goods, the address and receiving person’s name as displayed on the postage label.
No personal information is shared with third parties outside of these exceptions.
You have the right to be informed of the information that we hold on you within 30 calendar days. You also have the right to request that all inaccuracies be amended. You can do this by emailing email@example.com, calling Customer Service or by writing to the Data Controller, Dr Alex Emodi, at our Windsor address.
You have the right to ask us to delete all the data which we hold on you.
Information Commissioner’s Office
If you are not happy with how we are using your data or responding to a query then you do have the right to contact the Information Commissioner’s Office. Details of how to do this can be found on their website: www.ico.org.uk.