It is our policy to collect, process and share your Data provided to us by you in order to carry out the services requested by you and any contact in relation to those services only.
Your Data will not be used for any other purposes other than those explicitly stated in this policy or requested by you in your dealings with us.
This Privacy Policy describes how we collect, use, protect, process and share your personal data (Data) when you book appointments online with us, directly with us and avail of treatments with us or otherwise interact with us.
This Privacy Policy does not apply to the information processed by third parties on behalf of NeoMed Clinic, however we have reviewed their Privacy Policies and are happy they meet General Data Protection Regulations 2018 (GDPR) standards. We may update this Privacy Policy at any time to ensure we can carry out the services we provide in the most effective and efficient way possible. If we make changes we will notify you by revising the date on our published document on our website and in clinic, or for more substantial changes by contracting you via email or text to seek consent.

1. The identity of the controller:
You are hereby informed that the Data that you provide is collected, used, protected, processed and shared by the clinic director.

2. Collection of Data:
We may collect Data about our patients, prospects and visitors. Your Data are collected when you browse our website, contact us via email, phone or in person or through our website.
Data we collect fall into the following categories:
* Identification information
* Contact information
* Medical information
* Browsing information
These Data are gathered directly from you via online booking and from direct communication with us, i.e. client intake form. Browsing history is collected via automated methods.

2.1. Information you provide to us
We process Data you provide directly to us, in particular when you complete a client intake form or book online.
For example, we collect Data when you create a booking, use the services, participate in a contest or promotion, register for an event or an online course, apply for a job, request customer support or otherwise communicate with us.
The Data may include the following data as well as any other type of information that we specifically request you to provide to us through our client intake forms, such as:
* Names
* Address
* Date of Birth
* Phone no
* Email
* Doctor’s details
* Next of kin
* Medical history
* Medical red flag
* Treatment notes
* Relationship data
* Browsing data

2.2. Google Analytics
We inform you, in particular, that We use Google Analytics to collect information about use of our online services. We do not combine the information collected through the use of Google Analytics with personally identifiable information. We inform you that Google Analytics plants a permanent cookie on your web browser to identify you as a unique user the next time you visit our site, the cookie cannot be used by anyone but Google. Google’s ability to use and share information collected by Google Analytics about your visits to this site is restricted by the Google Analytics Terms of Use and the Google Privacy Policy. You can prevent Google Analytics from recognizing you on return visits to this site by disabling
cookies on your browser. For more information on Google Analytics, please visit Google Analytics.

2.3. Third Party Cookies
When you access or use our online services, one or more cookies from third party are likely to be placed on your equipment.
We inform you that we have no access and cannot exercise any control over third party cookies. However, we shall ensure that the partner companies agree to process the information collected on our online services in compliance with the GDPR and undertake to implement appropriate measures for securing and protecting the confidentiality of the Data.

3. How we use the Data
We may use information about you for the following purposes:
* provide, maintain and improve our services
* provide and deliver the service you request, process transactions and send you related
information including confirmations and invoices
* send you technical notices, updates, security alerts and support and administrative
messages
* respond to your comments, questions, requests and provide customer service
* monitor and analyse trends, usage and activities in connection with our services
* personalise and improve the services we provide

* marketing

According to the GDPR, each Data processing is performed on one of the following legal basis:
* your consent
* the performance of the service requested by you

4. How we share your Data
* We share your Data with our online booking system to help us provide our service including bookings, transactions, booking confirmations.
* In response to a request for information if we are required by, or believe disclosure is required by, any applicable law, regulation or legal process, including in connection with lawful requests by law enforcement, national security, or other public authorities.

5. The period of Data retention
Our insurance providers require us to retain all records for a period of 7 years after the last appointment, or in the case of minors, for 7 years after their 18th birthday. We work off this for all data. (GDPR states that clients have a right to be forgotten and can request data deleted – queries have been put to the Data Protection Commissioners in regards to the conflict here). Card details when card payments are taken over the phone. The card number is typed directly into the terminal and is never written or stored anywhere.

6. Data transfer
Upon receiving a written request from you seeking Data transfer, we will provide a hardcopy copy of your original treatment notes with no alterations from the original. These will be handed in person or sent by registered post.

7. Data amendments
Upon receiving a request from you in regards to updating Data held by us, we will seek to correct our records at the earliest possible time.

8. Security
We are committed to taking appropriate measures designed to keep your Data secure. Our technical, administrative and physical procedures are designed to protect Data from loss, theft, misuse and accidental, unlawful or unauthorized access, disclosure, alteration, use and destruction. We follow generally accepted standards to protect the personal information submitted to us, both during transmission and once it is received.

All personal informations are SSL encrypted

SSL Encryption

SSL (Secure Sockets Layer) is a protocol developed for transmitting private documents or information via the Internet. SSL creates a secure connection between a client and a server, encrypting sensitive information being transmitted through the web page. Many websites, like banking or e-commerce sites, use SSL to obtain confidential user information. You can tell if a web page has SSL if the URL begins with https:// rather than http://. Your browser may also display an open or closed lock icon in the address bar.

9. Your rights
Under the General Data Protection Regulations 2018 (GDPR) individuals have the significantly strengthened rights to:
* obtain details about how their data is processed by an organisation or business;
* obtain copies of personal data that an organisation holds on them;
* have incorrect or incomplete data corrected;
* have their data erased by an organisation, where, for example, the organisation has no legitimate reason for retaining the data;
* obtain their data from an organisation and to have that data transmitted to another organisation (Data Portability);
* object to the processing of their data by an organisation in certain circumstances;
* not to be subject to (with some exceptions) automated decision making, including profiling.

10. In the event of a Breach

Every precaution will be taken to avoid a breach of your Data, but if such a breach should occur, it will be documented, assessed as to its severity and appropriate action taken. The Data Protection Commissioner will be informed and financial institutions will be contacted for assistance and you will be contacted to help you take steps to mitigate the risks to yourself, if it is deemed a severe enough breach as to put you, your identity, your financial means, etc. at risk .

11. SMS Reminder Policy

72 Hours – A reminder SMS will be sent 72 hours prior to your appointment. Please reply to confirm your appointment or call reception to reschedule.

48 Hours – A second reminder SMS will be sent 48 hours prior to your appointment for those patients who have not already confirmed their appointment

You will be given 24 hours after the second SMS was sent to confirm your appointment, or call to reschedule. Failure to reply within the 24 hours of your appointment will result in your appointment being cancelled and offered to patients that are on the waiting list.

All patients without mobile phones or who prefer landline contact will be contacted at the same intervals, by NeoMed. If we do not have confirmation of your appointments per the time frame above, your appointment will be cancelled.

• Please note this applies to all appointments within our practice.

24 Hours – A third reminder SMS will be sent 24 hours prior to your appointment .

12. Appointment cancellation policy

All appointment cancellations are required to be given a minimum of 24 hours prior to your

appointment or you will incur a late cancellation fee of €50. This fee will be payable at the time of cancellation. The €50 cancellation fee will be required to be paid prior to you booking any subsequent appointments. If you have an appointment booked but have not paid the fee, you will be required to cancel the booked appointment until fee has been paid.

13. Did not attend appointment (DNA)

All appointments where a patient has not attended, and where the patient has not advised of cancellation, will incur a fee of € 50. The € 50 DNA fee will be required to be paid prior to booking any subsequent appointments. If you have an appointment booked but have not paid the fee, you will be required to cancel the booked appointment until fee has been paid.

14. We may need to change this Privacy Statement from time to time. We will alert you to material changes by, for example, placing a notice on our website and/or by sending you a text message and/or an email. You are responsible for periodically reviewing this Privacy Statement.

15.   We may use a third-party advertising technology to serve advertisements when you access the Site. This technology uses your information with regards to your use of the Services to serve advertisements to you (e.g., by placing third-party cookies on your web browser).