Privacy Policy
This Privacy Notice becomes effective as of 25 May 2018.
We understand that we have a responsibility to protect and respect your privacy and look after your personal data.
This Privacy Notice, inclusive of our General Terms of Service, explains what personal data we collect, how we use your personal data, reasons we may need to disclose your personal data to others and how we store your personal data securely.
For clarity, Revere Clinics may be both data controller and data processor for your personal data under certain circumstances.
By providing us with your data, you warrant that you are over 13 years of age.
We have appointed a Data Protection Officer who is in charge of privacy related matters for us. If you have any questions about this privacy notice, please contact the Data Protection Officer using the details set out below:
Our full details are:
Revere Clinics
Name of Data Protection Officer: Paul Roberts
Email: info@revereclinics.com
Postal address: LONDON CLINIC, 100 HARLEY STREET, LONDON, W1G 7JA.
We must advise that this policy is subject to change, so please check our website on a regular basis for any further changes. www.revereclinics.com
Website Privacy Policy
This Privacy Notice becomes effective as of 25 May 2018.
We understand that we have a responsibility to protect and respect your privacy and look after your personal data.
This Privacy Notice, inclusive of our General Terms of Service, explains what personal data we collect, how we use your personal data, reasons we may need to disclose your personal data to others and how we store your personal data securely.
For clarity, Revere Clinics may be both data controller and data processor for your personal data under certain circumstances.
By providing us with your data, you warrant that you are over 13 years of age.
We have appointed a Data Protection Officer who is in charge of privacy related matters for us. If you have any questions about this privacy notice, please contact the Data Protection Officer using the details set out below:
Our full details are:
Revere Clinics
Name of Data Protection Officer: Paul Roberts
Email: info@revereclinics.com
Postal address: William Old Centre, Ducks Hill Road, Northwood, Middlesex, HA6 2NP.
We must advise that this policy is subject to change, so please check our website on a regular basis for any further changes. www.revereclinics.com
How the law protects you
Data protection laws state that we are only able to process personal data if we have valid reasons to do so. The basis for processing your personal data includes, but is not limited to, your consent, performance of a contract, to enable billing and remittance, and to contact you for patient care purposes.
How do we collect personal data from you?
Direct interactions:You may provide data by filling in forms on our site (or otherwise) or by communicating with us by post, phone, email or otherwise, including when you:
- Visit the clinic for a consultation or treatment
- Request resources or marketing to be sent to you;
- Enter a competition, prize draw, promotion or survey; or
- Give us feedback.
Automated Technologies or interactions:As you use our site, we may automatically collect Technical Data about your equipment, browsing actions and usage patterns. We collect this data by using cookies, server logs and similar technologies. We may also receive Technical Data about you if you visit other websites that use our cookies.
Please see our Cookie Policyfor further details
Third parties or publicly available resources: We may receive personal data about you from various third parties and public sources set out below:
- Analytics providers such as Google based outside the EU;
- Contact and Financial and Transactional Data from providers of technical, payment and delivery services such as Omniport
- Identity and Contact Data from publicly available sources such as Companies House and the Electoral Register based inside the EU
What type of data do we collect from you?
Personal data means any information capable of identifying an individual. It does not include anonymised data.
We may process certain types of personal data about you as follows:
- Identity Data may include your first name, last name, marital status, title, date of birth and gender.
- Contact Data may include your billing address, delivery address, email address and telephone numbers.
- Financial Data may include your bank account and payment card details.
- Transaction Data may include details about payments between us and other details of purchases made by you.
- Profile Data may include your username and password, purchases or orders, your interests, preferences, feedback and survey responses.
- Usage Data may include information about how you use our website, products and services.
- Marketing and Communications Data may include your preferences in receiving marketing communications from us and our third parties and communication preferences.
Sensitive data
We do not collect any Sensitive data about you. Sensitive data refers to data that includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions trade union membership, information about your health and genetic and biometric data. We do not collect any information about criminal convictions and offences.
How we use your personal data?
We will only use your personal data when legally permitted. The most common uses of your personal data are:
- When we need to perform the contract between us.
- Where it is necessary for our legitimate interests (or those of the third party) and your interests and fundamental rights do not override these interests.
- Where we need to comply with a legal or regulatory obligation.
Generally, we do not rely on consent as legal ground for processing your personal data, other than in relation to sending marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by emailing us at info@revereclinics.com
Table 2 below, shows you how we use your personal data.
Purpose/Activity | Type of data | Lawful basis for processing |
To register you as a new patient | (a) Identity (b) Contact |
Performance of a contract with you |
To process and deliver your service (a) Manage payments, fees and charges (b) Collect and recover money owed to us |
(a) Identity (b) Contact (c) Financial (d) Transaction (e) Marketing and Communications |
(a) Performance of a contract with you (b) Necessary for our legitimate interests to recover debts owed to us |
To manage our relationship with you which will include: (a) Notifying you about changes to our terms or privacy policy (b) Asking you to leave a review or take a survey |
(a) Identity (b) Contact (c) Profile (d) Marketing and Communications |
(a) Performance of a contract with you (b) Necessary to comply with a legal obligation (c) Necessary for our legitimate interests to keep our records updated and to study how customers use our products/services |
To enable you to partake in a prize draw, competition or complete a survey | (a) Identity (b) Contact (c) Profile (d) Usage (e) Marketing and Communications |
(a) Performance of a contract with you (b) Necessary for our legitimate interests to study how customers use our products/services, to develop them and grow our business |
To administer and protect our business and our site (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data) | (a) Identity (b) Contact (c) Technical |
(a) Necessary for our legitimate interests for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise (b) Necessary to comply with a legal obligation |
To deliver relevant content and advertisements to you and measure and understand the effectiveness of our advertising | (a) Identity (b) Contact (c) Profile (d) Usage (e) Marketing and Communications (f) Technical |
Necessary for our legitimate interests to study how customers use our products/services, to develop them, to grow our business and to inform our marketing strategy |
To use data analytics to improve our website, products/services, marketing, customer relationships and experiences | (a) Technical (b) Usage |
Necessary for our legitimate interests to define types of customers for our products and services, to keep our site updated and relevant, to develop our business and to inform our marketing strategy |
To make suggestions and recommendations to you about goods or services that may be of interest to you | (a) Identity (b) Contact (c) Technical (d) Usage (e) Profile |
Necessary for our legitimate interests to develop our products/services and grow our business |
Marketing communications
You will receive marketing communication from us if you have:
- I. Requested information from us or purchased goods or services from us; or
- II. If you provided us with your details and ticked the box at the point of entry of your details for us to send you marketing communications; and
- III. In each case, you have not opted out of receiving that marketing.
Disclosures of your personal data
We may have to share your personal data with the parties as shown below for the purposes set out in the table 2 above:
- Service providers who provide IT and system administration services.
- Professional advisers including, manufacturers, lawyers, bankers, auditors and insurers who provide consultancy, banking, legal, insurance and accounting services.
- HM Revenue & Customs, regulators and other authorities based in the United Kingdom and other relevant jurisdictions who require reporting of processing activities in certain circumstances.
- We may pass your personal data to third parties for the provision of services on our behalf (for example processing your payment). However, we will only ever share information about you that is necessary to provide the service and we have specific contracts in place, which ensure your personal data is secure and will not be used for any marketing purposes.
- We work closely with a number of third parties like telecom service providers, CRM database providers, scheduling software providers and web-based service providers, mainly to provide you with systematic continuity of care.
We require all third parties to whom we transfer your data to respect the security of your personal data and to treat it in accordance with the law. We only allow such third parties to process your data for specified purposes and in accordance with our instructions.
International Transfers
We share your personal data within our group of companies which involves transferring your data outside the European Economic Area (EEA). Countries outside of the European Economic Area (EEA) do not always offer the same levels of protection to your personal data, so European law has prohibited transfers of personal data outside of the EEA unless the transfer meets certain criteria.
Many of our third parties service providers are based outside the European Economic Area (EEA) so their processing of your personal data will involve a transfer of data outside the EEA.
Whenever we transfer your personal data out of the EEA, we do our best to ensure a similar degree of security of data by ensuring at least one of the following safeguards is implemented:
We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission; or
- Where we use certain service providers, we may use specific contracts or codes of conduct or certification mechanisms approved by the European Commission which give personal data the same protection it has in Europe; or
- Where we use providers based in the United States, we may transfer data to them if they are part of the EU-US Privacy Shield which requires them to provide similar protection to personal data shared between the Europe and the US.
If none of the above safeguards is available, we may request your explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.
Please email us at info@revereclinics.com if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA
Data security
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know such data. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Data retention
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
By law we have to keep basic information about our patients (including Contact, Identity, Financial and Transaction Data) for ten years after they cease being customers for tax purposes.
In some circumstances you can ask us to delete your data: see below for further information.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Your rights
In the event of preventing the use or processing of your personal data we shall be unable to provide our services or process the cancellation of your service.
You have the right to object to our use of your personal data, or ask us to delete, remove or stop using it if there is no need for us to keep it. This is known as your right to be forgotten.
There are legal and accountancy reasons why we will need to keep your data, but please do inform us if you think we are retaining or using your personal data incorrectly.
Our Privacy Notice shall be made clear to you at the point of collection of your personal data. You can request to see your personal data at any time. You can do this by contacting us on info@revereclinics.com.
We will not contact you for marketing purposes unless you have given us your prior consent. You can change your marketing preferences at any time.
You can see more about these rights at: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Third party links
The Revere Clinics website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.
Cookies
You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly. For more information about the cookies we use, please see Cookie Policy
Accessing and updating your data
You must maintain the accuracy of your information and ensure all your details, including but not limited to, name, address, phone number and e-mail address are kept up to date at all times. You must do this by contacting us on info@revereclinics.com.
You have the right to access the information we hold about you. Please email your requests to info@revereclinics.com. so that we can obtain this information for you.
Links to other sites
Revere Clinics may provide links to third party sites. Since we do not control those websites, we encourage you to review the privacy policies of these third party sites. Any information that is supplied on these sites will not be within our control and we cannot be responsible for the privacy policies and practices of these.
Where we store your personal data
We follow accepted CQC standards to store and protect the personal data we collect, including the use of encryption if appropriate. All information you provide to us is stored on our secured servers within the EEA.
Liability
We agree to take reasonable measures to protect your data in accordance with applicable laws and in accordance with our General Terms and Conditions.
Data Breaches
In the event of a data breach, we shall ensure that our obligations under applicable data protection laws are complied with where necessary.
Contact us
Please e-mail any questions or comments you have about privacy to us at info@revereclinics.com
Your right to make a complaint
You have the right to make a complaint about how we process your personal data to the Information Commissioner:
https://ico.org.uk/concerns
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Tel: 0303 123 1113
Cookie Policy
The Revere Group of Companies are committed to safeguarding the privacy of our website visitors, this policy sets out how we will treat your personal information.
(1) What information do we collect? We may collect, store and use the following kinds of personal data:
- (a) information about your visits to and use of this website;
- (b) information about any transactions carried out between you and us on or in relation to this website, including information relating to any purchases you make of our goods or services;
- (c) information that you provide to us via telephone or this website for the purpose of registering with us and/or subscribing to our website services and/or email notifications.
- (d) We may record your telephone calls for training and quality purposes and to ensure we offer a high quality of customer service.
(2) Information about website visits. We may collect information about your computer and your visits to this website such as your IP address, geographical location, browser type, referral source, length of visit and number of page views. We may use this information in the administration of this website, to improve the website’s usability, and for marketing purposes. We use cookies on this website. A cookie is a text file sent by a web server to a web browser, and stored by the browser. The text file is then sent back to the server each time the browser requests a page from the server. This enables the web server to identify and track the web browser. We may send a cookie which may be stored on by your browser on your computer’s hard drive. We may use the information we obtain from the cookie in the administration of this website, to improve the website’s usability and for marketing purposes. We may also use that information to recognise your computer when you visit our website, and to personalise our website for you. Most browsers allow you to refuse to accept cookies. (For example, in Internet Explorer you can refuse all cookie by clicking “Tools”, “Internet Options”, “Privacy”, and selecting “Block all cookies” using the sliding selector.) This will, however, have a negative impact upon the usability of many websites , including this one. We also include web beacons (also known as clear gifs) in our emails to track the success of our marketing campaigns. This means that if you open an email from us we can see which pages of the Sites you visit. Our web beacons do not store additional information on your computer but, by communicating with our cookies on your computer, they can tell us when you have opened our email. If you object to web beacons, we recommend you follow the instructions for deleting existing cookies and disabling future cookies above. We will still know how many of our emails are opened and we will automatically receive your IP address, a unique identifier of your computer or other access device; but we will not identify you as an individual.
(3) The types of cookies we use
In an effort to provide increased transparency with respect to our use of cookies, we wanted to provide you with additional information about the types of cookies we employ. We may use any of the following types of cookies on the Services as described in the table below:
Cookie Type | Description |
---|---|
Essential Cookies | These cookies are necessary for the functionality of the Services. These cookies can be disabled in your browser but may prevent certain parts of the Services from functioning. |
Analytics Cookies | These cookies help us to determine the source and amount of traffic to the Services and help us to better understand how our visitors use the Services. If you choose to disable these cookies, it will impact our ability to measure the performance of the Services. |
Functionality Cookies | These cookies help us to enhance the functionality of our website, including through the use of customization or personalization. These cookies may be set by third parties. Disabling these cookies may prevent certain parts of the Services from functioning. |
Advertising or Targeting Cookies | Advertising or targeting cookies may be set by third parties to facilitate the delivery of targeted advertising, including through the delivery of interest-based advertising, and helping us measure the effectiveness of our campaigns. If you disable these cookies, you may receive less relevant or targeted advertising. |
INVOCO | This cookie stores a telephone unique to the visitor when they are referred to our site from a Google Ad.This helps us optimise our Google Ads performance. No personal data is stored and the cookie is deleted after 30 days. |
(4) Using your personal data Personal data submitted on this website will be used for the purposes specified in this privacy policy or in relevant parts of the website. In addition to the uses identified elsewhere in this privacy policy, we may use your personal information to:
- (a) improve your browsing experience by personalising the website;
- (b) send information to you which we think may be of interest to you by post or by email or similar technology;
- (c) send to you marketing communications relating to our business [or the businesses of carefully-selected third parties] which we think may be of interest to you by post or, where you have specifically agreed to this, by email or similar technology [(you can inform us at any time if you no longer require marketing communications to be sent by emailing us at digital@revereclinics.com
- (d) provide other companies with statistical information about our users – but this information will not be used to identify any individual user; and,We will not without your express consent provide your personal information to any third parties for the purpose of direct marketing.
(5) Other disclosures In addition to the disclosures reasonably necessary for the purposes identified elsewhere in this privacy policy, we may disclose information about you:
- (a) to the extent that we are required to do so by law;
- (b) in connection with any legal proceedings or prospective legal proceedings;
- (c) in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk); and
- (d) to the purchaser or seller (or prospective purchaser or seller) of any business or asset which we are (or are contemplating) selling or purchasing. Except as provided in this privacy policy, we will not provide your information to third parties.
(6) Security of your personal data We will take reasonable precautions to prevent the loss, misuse or alteration of your personal information. Of course, data transmission over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet. We will store all the personal information you provide on our secure servers.
(7) Policy amendments We may update this privacy policy from time-to-time by posting a new version on our website. You should check this page occasionally to ensure you are happy with any changes.
(8) Your rights. You may instruct us to provide you with any personal information we hold about you. Provision of such information may be subject to the payment of a fee(currently fixed at £10.00). You may instruct us not to process your personal data for marketing purposes. In practice, you will usually either expressly agree in advance to our use of your personal data for marketing purposes, or we will provide you with an opportunity to opt-out of the use of your personal data for marketing purposes. You can also instruct us not to use your personal data for marketing purposes by email (to digital@revereclinics.com) at any time.
(9) Third party websites The website contains, or may from time to time contain, links to other websites. We are not responsible for the privacy policies of third party websites or their content.
(10) Contact If you have any questions about this privacy policy or our treatment of your personal data, please write to us by email to digital@revereclinics.com
Data Protection
At Revere Clinics we take seriously our responsibility to protect the data that is entrusted to us. We process data in accordance with the eight Data Protection Principles within the Data Protection Act 1998.
Personal information provided during your visit to Revere Clinics will be used for the following purposes:
- (a) sending information which is relevant to your consultation and treatment
- (b) sending information which we think may be of interest to you by email, text or similar technology
Revere Clinics provides you with opportunities to opt out or unsubscribe from its marketing activities by using the provided unsubscribe link or by sending an email at digital@revereclinics.com.
If you express a wish not to be contacted in the future, your details will be removed from our marketing lists and added to a list that is cross-referenced to any future marketing lists to ensure that you are not contacted again unless you specifically subscribe to our marketing communications.
Revere Clinics do not share personal or sensitive data with third-parties. All personal data is held securely, accessible only to those who need access within Revere Clinics, and only for as long as is necessary to meet the needs of the business.