|Legal bases for using your personal data
|Additional legal bases for using your special category personal data
|Purpose 1: To provide your occupational health care
Spire Occupational Health processes personal data and often sensitive medical information for the purposes of preventive or occupational medicine, for the assessment of the working capacity of the employee. This is to ensure the health and safety of the employees at work and to allow consideration of any adjustments that may be required to support their ability to work.
– To provide your care and related services; and
– To fulfil our contact with you and your employer relating to the delivery of your care.
|Health or social care: to provide your care
|Purpose 2: Contacting you and resolving queries or complaints
From time to time, patients may raise queries, or even complaints, with us and we take those communications very seriously. We will need to use your personal data to resolve such matters fully and properly.
|Contract: to provide your care and other related services; and
Legitimate interests: for our legitimate business interest to ensure our patients’ queries and complaints are answered, which does not overly prejudice you.
|Health or social care: to provide your care; and
Legal claims: to establish, exercise or defend our legal claims.
|Purpose 3: Advising you of other services offered by Spire Occupational Health and selected third-party partners (“Marketing”)
To provide you with up-to-date information regarding our range of services which may be of interest to you.
We may also seek your views and comments on the range of services we provide through surveys and questionnaires.
We do not need to use your special categories of personal data for this.
If you no longer wish to receive marketing emails sent by us, you can click on the “unsubscribe” link that appears in all of our emails, otherwise, you can always contact us at email@example.com to update your contact preferences.
|Legitimate interests: We need to use your personal data for our legitimate business interest in marketing our services to our existing clients to increase sales, which does not overly prejudice you; and
Consent: You have given us your consent to use your personal data for this purpose.
|Purpose 4: For research, audit, statistics, or product testing and improvement
We may need to use your medical records to test the quality and effectiveness of new systems that we implement to improve the care and treatment we provide or assist in the management of our occupational health services.
Any published data from these programmes will be in an anonymised, statistical format.
|Legitimate interest: for our legitimate business interest in making improvements in our systems and services which have been appropriately assessed and where we have put safeguards in place to protect your privacy so that this use does prejudice your privacy rights.
Consent: You have given us or the organisation collecting your personal data your consent to use your personal data for this purpose.
|Substantial public interest: for reasons of public interest for statistical and scientific research purposes.
|Management referral information
|6 years after the employee has left their job or 75 years of age (whichever is soonest) as recommended by the British Medical Association (BMA).
|2 years if the employee doesn’t take up the offer of the job.
|3 years if the employee accepts the job offer.
|Healthcare students & non-health student
|6 years, from the date they commenced post the student leaving date of the University programme.
|Medical retirement/Deceased employees
|Until any appeals have lapsed then plus 3 years.
|Health Surveillance (as required by the Health and Safety Executive (HSE)).