This privacy notice applies to anyone who interacts with us about our products and services (‘you’, ‘your’), in any way (for example, by email, through our website, by phone, through our app). We will give you further privacy information if necessary for specific contact methods or in relation to specific products or services.
This privacy notice applies to you if you ask us about, buy or use our products and services. It describes how we handle your information, regardless of the way you contact us (for example, by email, through our website, by phone, through our app and so on). We will provide you with further information or notices if necessary, depending on the way we interact with each other, for example if you use our apps we may give you privacy notices which apply just to a particular type of information which we collected through that app.
How we collect personal information
We collect personal information from you and from third parties (anyone acting on your behalf, for example, brokers, health-care providers and so on). Please see below for more information.
Where you provide us with information about other people, you must make sure that they have seen a copy of this privacy notice and are comfortable with you giving us their information.
We collect personal information from you:
- through your contact with us, including by phone (we may record or monitor phone calls to make sure we are keeping to legal rules, codes of practice and internal policies, and for quality assurance purposes), by email, through our websites, through our apps, by post, by filling in application or other forms, by entering competitions, through social media or face-to-face (for example, in medical consultations, diagnosis and treatment).
We also collect information from other people and organisations.
For all our customers, we may collect information from:
- your parent or guardian, if you are under 18 years old;
- a family member, or someone else acting on your behalf;
- doctors, other clinicians and health-care professionals, hospitals, clinics and other health-care providers;
- any service providers who work with us in relation to your product or service, if we don’t provide it to you direct, such as providing you with apps, medical treatment, dental treatment or health assessments;
- organisations, such as CACI or Binleys, who carry out customer-satisfaction surveys or market research on our behalf, or who provide us with statistics and other information (for example, about your interests, purchases and type of household) to help us to improve our products and services;
- fraud-detection and credit-reference agencies; and
- sources which are available to the public, such as the edited electoral register or social media.
If we provide you with insurance products and services, we may collect information from:
- the main member, if you are a dependant under a family insurance policy;
- your employer, if you are covered by an insurance policy your employer has taken out;
- brokers and other agents (this may be your broker if you have one, or your employer’s broker if they have one); and
- other third parties we work with, such as agents working on our behalf, other insurers and reinsurers, actuaries, auditors, solicitors, translators and interpreters, tax advisers, debt-collection agencies, credit-reference agencies, fraud-detection agencies (including health-insurance counter-fraud groups), regulators, data-protection supervisory authorities, health-care professionals, other health-care providers and medical-assistance providers.
If we provide you with health-care, dental or care-home services, we may collect information from:
- your employer, if you are covered by a contract for services your employer has taken out or if we are providing occupational health services;
- brokers and other agents (this may be your broker if you have one, or your employer’s broker if they have one); and
- those paying for the products or services we provide to you, including other insurers, public-sector commissioners and embassies.
Categories of personal information
We process two categories of personal information about you and (where this applies) your dependants:
- standard personal information (for example, information we use to contact you, identify you or manage our relationship with you); and
- special categories of information (for example, health information, information about your race, ethnic origin and religion that allows us to tailor your care, and information about crime in connection with checks against fraud or anti-money-laundering registers).
For more information about these categories of information, see below.
Standard personal information includes:
- contact information, such as your name, username, address, email address and phone numbers;
- the country you live in, your age, your date of birth and national identifiers (such as your National Insurance number or passport number);
- information about your employment;
- details of any contact we have had with you, such as any complaints or incidents;
- financial details, such as details about your payments and your bank details;
- the results of any credit or any anti-fraud checks we have made on you;
- information about how you use our products and services, such as insurance claims; and
- information about how you use our website, apps or other technology, including IP addresses or other device information (please see our Cookies Policy for more details).
Special category information includes:
- information about your physical or mental health, including genetic information or biometric information (we may get this information from application forms you have filled in, from notes and reports about your health and any treatment and care you have received or need, or it may be recorded in details of contact we have had with you such as information about complaints or incidents, and referrals from your existing insurance provider, quotes and records of medical services you have received);
- information about your race, ethnic origin and religion (we may get this information from your medical or care-home preferences to allow us to provide care that is tailored to your needs); and
- information about any criminal convictions and offences (we may get this information when carrying out anti-fraud or anti-money-laundering checks, or other background screening activity.
Sharing your information
We share your information within the Group, with relevant policyholders (including your employer if you are covered under a group scheme), with funders arranging services on your behalf, with people acting on your behalf (for example, brokers and other agents) and with others who help us provide services to you (for example, health-care providers and medical-assistance providers) or who we need information from to allow us to handle or confirm claims or entitlements (for example, professional associations). We also share your information in line with the law. For more information about who we share your information with, please see below.
We sometimes need to share your information with other people or organisations for the purposes set out in this privacy notice.
For all our customers, we share your information with:
- other members of the Group;
- other organisations you belong to, or are professionally associated with, in order to confirm your entitlement to claim discounts on our products and services;
- doctors, clinicians and other health-care professionals, hospitals, clinics and other health-care providers;
- suppliers who help deliver products or services on our behalf;
- people or organisations we have to, or are allowed to, share your personal information with by law (for example, for fraud-prevention or safeguarding purposes, including with the Care Quality Commission);
- the police and other law-enforcement agencies to help them perform their duties, or with others if we have to do this by law or under a court order;
- if we (or any member of the group) sell or buy any business or assets, the potential buyer or seller of that business or those assets; and
- a third party who takes over any or all of the Group’s assets (in which case personal information we hold about our customers or visitors to the website may be one of the assets the third party takes over).
If we provide insurance or manage a health-care trust, we share your information with:
- the policyholder or their agent if you are not the main member under an individual policy (we will send them all membership documents and confirmation of how we have dealt with a claim, and all people who are insured on the policy may have access to correspondence and other information we provide through our online portal);
- your employer (or a their broker or agent) for product or service administration purposes if you are a member or beneficiary under your employer’s group scheme;
- your broker or agent (or both);
- other third parties we work with to provide our products and services, such as agents working on our behalf, other insurers and reinsurers, actuaries, auditors, solicitors, translators and interpreters, tax advisers, debt-collection agencies, credit-reference agencies, fraud-detection agencies (including health-insurance counter-fraud groups), regulators, data-protection supervisory authorities, health-care professionals, health-care providers and medical-assistance providers; and
- organisations who provide your treatment and other benefits, including travel-assistance services.
If we provide health-care, dental and care-home services, we share your information with:
- your employer, if your employer is paying for the services we are providing;
- our insurance partners, for example, brokers, reinsurers, actuaries, auditors, solicitors, translators and interpreters, tax advisers, debt-collection agencies, credit-reference agencies, fraud-detection agencies, regulators, data-protection supervisory authorities;
- those paying for the products or services we provide to you, including insurers, public-sector commissioners and embassies;
- those providing your treatment and other benefits;
- national registries such as the Cancer Registry;
- national screening databases, such as the NHS Cervical Screening recall system;
- government authorities and agencies, including the Health Protection Agency (for infectious diseases such as TB and meningitis); and
- organisations that carry out patient surveys on our behalf (for example, NPS).
If we share your personal information, we will make sure appropriate protection is in place to protect your personal information in line with data-protection laws.
Here is how we handle information about your visit to our Web site:
A. Information Collected and Stored Automatically If you visit our site to read or download information, we collect and store the following information about your visit: – The name of the Internet domain (for example, “xcompany.com” if you use a private Internet access account, or “yourschool.edu” if you are connecting from a university’s domain) and the IP address (a number that is automatically assigned to your computer when you are using the Internet) from which you access our site; – The type of browser and operating system used to access our site; – The date and time you access our site; – The Internet address of the Web site from which you linked directly to our site; and – The pages you visit and the information you request. This information is primarily collected for statistical analysis and technical improvements to the site. This computer system uses software programs to create summary statistics, which may be used for such purposes as assessing what information is of most and least interest, determining technical design specifications, and identifying system performance or problem areas. In certain circumstances, however, we may take additional steps to identify you based on this information and we may share this information, including your identity, with other government agencies.
B. If You Send Us Personal Information You do not have to provide any personal information to visit this Web site. If you choose to provide us with personal information, such as by sending a message to an e-mail address on this Web site or by filling out a form and submitting it through our Web site, we will use that information to respond to your message or to fulfill the stated purpose of the communication. If you submit your resume to us electronically we will use your personal information to consider your application for employment. Rajan Uppal practice does not collect or use information for commercial marketing to third parties. We may share information you give us with contractors acting on our behalf or with another government agency if your inquiry relates to that agency. In other limited circumstances, such as responses to requests from lawyers and private individuals, we may be required by law to disclose information you submit. If you provide comments in response to a request for public comments we may make those comments as well as your identity available to the public in a publication or by posting them on our Web site. Where possible we may give you more specific guidance at the point of collection regarding how your personal information may be used or disclosed. Electronically submitted information is maintained and destroyed according to the principles of the practice. Remember that e-mail is not necessarily secure against interception. If your communication is sensitive or includes personal information you may prefer to send it by postal mail instead.
“Cookies” are small bits of text that are either used for the duration of a session (“session cookies”), or saved on a user’s hard drive in order to identify that user, or information about that user, the next time the user logs on to a Web site (“persistent cookies”). Our Web site and its component sites do not use persistent cookies. Certain pages on the Web site and its component sites use session cookies to provide streamlined navigation and for statistical analysis. We also use session cookies as part of a voluntary web customer satisfaction survey that will appear to a small percentage of our Web site visitors as they leave the site. Session cookies are deleted from the servers soon after your session ends and are not collected or saved. You can set up your Web browser to inform you when cookies are set or to prevent cookies from being set. You can still use our Web site if you do not accept the cookies, but you may be unable to use certain cookie-dependent features.
Our Social Network Policy
The Rajan Uppal is pleased to participate on open, un-moderated forums offered by commercial social networks sites in order to increase transparency, promote public participation and encourage collaboration with the Practice. We currently maintain Rajan Uppal accounts on Facebook, MySpace, YouTube and Twitter. Please note that the practice does not control, moderate or endorse the comments or opinions provided by visitors to these sites. Defamatory or libellous comments are taken very seriously by the practice and will lead to legal action for which the practice has full legal insurance. In addition, the Practice does not collect, maintain or disseminate information posted there. Visit our Contact Page for information on how to send official correspondence to the Rajan Uppal practice. For site security purposes and to ensure that this service remains available to all users, this computer system employs software programs to monitor network traffic to identify unauthorized attempts to upload or change information, or otherwise cause damage. Anyone using this system expressly consents to such monitoring and is advised that if such monitoring reveals evidence of possible abuse or criminal activity, such evidence may be provided to appropriate law enforcement officials. Unauthorized attempts to upload or change information on this server are strictly prohibited and may be punishable by law, including the Computer Misuse Act 1990.