Whenever you share any personal information with me it is my duty to keep it safe. I have operated on that principle from the outset of my practice 15 years ago, and the recent GDPR regulations haven’t altered that. I am more than happy to share any information I have stored with you at any time. I am also happy to send and receive documents through a secure route (e.g. dropbox) or encrypted format.

I have found, however, that clients generally do not want the bother of having to log into different sites to receive their recommendations so I don’t do it by default. If you are worried about sensitive information falling into the wrong hands please let me know and let’s agree a method of information sharing that makes you feel comfortable.

If you would like all emails to be encrypted, please see the following link: https://www.comparitech.com/blog/vpn-privacy/how-to-encrypt-email/#gref

and then get in touch with a specific request.

Alternatively I can send all files via Dropbox if you have an account. If this is your preferred choice please let me know.

Below you will find the statutory statement about the way I store and use your information.

____________________________________

Effective date: Friday 25 May 2018

For the purposes of the EU General Data Protection Regulation (GDPR) (EU) 2016/679, the responsible entity and data controller is:

Dawn Waldron, 16 Modest Corner, Tunbridge Wells, Kent, UNITED KINGDOM, TN4 0LS

If you have any questions about the way I store your information please contact me:

dawnwaldron@mac.com

Collecting Data

Dawn Waldron operates the following websites:

• http://www.dawnwaldron.com
• http://www.dinnerwithdawn.com

and Facebook Page:

• https://www.facebook.com/dawnwaldronbreastcancersupport/?ref=settings

When you subscribe to either of my websites I store the following data:

• your email address

When you book a consultation I store the following data:

• your name
• your email address
• phone number
• anything you tell me about your health in the initial communication

When we work together I keep all of the above plus the following data:

• the information on your questionnaire that you choose to share*
• any additional medical and health information you send to me
• my notes made during our meetings
• copies of my recommendations to you
• any test results that we commission together

*You are not obliged to answer all of the questions on my questionnaire but it may affect the quality of the service I am able to provide.

Using Your Data

I use the data your provide to:

• analyse your health and lifestyle situation
• provide you with relevant personalised advice
• steer you towards services I offer
• detect and monitor trends in my clients and protocols

I will never share your information with anyone without expressly seeking your permission. Specifically I will never, ever share your information with anyone for marketing purposes.

I may from time to time use your information to contact you to offer further services relevant to your situation.

I may from time to time refer to your data when preparing lectures, talks or designing protocols but that would always be anonymously used.

I may discuss your information with carefully chosen test laboratories (e.g. Lifecode Gx, Genova Diagnostics, Regenerus Labs) in order to analyse technical findings of testing we have commissioned.

Storing Data

I am required by my professional body to keep your data for 8 years following our consultations.

The information I store may be on paper or it may be stored digitally on computer and cloud. I will take all reasonable steps to ensure your data is secure and confidential but your name will be on the documents and they will not be encrypted.

The security of your data is important to me but I rely on digital transmission and this can never be 100% secure. My office is based at home and, while the majority of  documents are received digitally or scanned and kept on a password protected computer, handwritten summary notes relating to our most recent meetings will be kept in my desk drawer. I do not carry any confidential papers outside my home and all papers are shredded before disposal.

Third Party Data

I use an online booking service called ScheduleOnce, a payment service called PayPal and online meetings normally take place via Skype or FaceTime. These service provide me with records of appointments, payments, and call duration. I use this data to prepare my accounts and to check diary information but I do collect payment card details, nor do I process or store this data in any other way. These organisations may have a different Privacy Policy to me, please check with them if you are concerned.

Accessing Your Data

You are welcome to ask for copies of all the data I have kept on you by emailing me at dawnwaldron@mac.com. I will send them to you digitally, as .pdf files. You may also ask me to correct any information you believe to be inaccurate or incomplete. You have the right to ask me to stop using your data but you cannot ask me to delete it before the statutory 8 year period has expired.

Any changes to this Privacy Policy will be updated on this page and via email to active clients. You are advised to review this Privacy Policy periodically for any changes but I do not anticipate using your data in different ways in the future. Any changes will become effective when they are posted on this page.

Again, if you have any questions or objections, please contact me: dawnwaldron@mac.com