Multicare Medical Ltd understands that your privacy is important, and we respect the privacy of everyone who visits our website and uses our online services.
The purpose of this policy is to explain to you how we control, process, handle and protect your personal information while browsing or using this website, including your rights under current laws and regulations. If you do not agree to the following policy you may wish to cease viewing / using this website.
1. Policy key definitions:
- “I”, “our”, “us”, or “we” refer to the business, Multicare Medical Ltd.
- “you”, “the user” refer to the person(s) using this website.
- GDPR means General Data Protection Act.
- ICO means Information Commissioner’s Office.
- Cookies mean small files stored on a user’s computer or device.
2. Your Rights
- Under the General Data Protection Regulation (GDPR) you have a number of rights: this policy and our use of your data has been designed to uphold these rights set out as follows.
- Right to be informed.
- Right of access
- Right of rectification
- Right to be forgotten
- Right to restriction of processing
- Right to data portability
- Right to object
- Right not to be subject to automated decision-making including profiling.
3. You also have the right to complain to the ICO if you feel there is a problem with the way we are handling your data. The ICO can be contacted:
- By post – The Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF.
- By telephone – 0303 123 1113
- Via its website – ico.org.uk
4. If you have cause for complaint about our use of your data, in the first instance please contact us using the details below
- By email – firstname.lastname@example.org
- By post – Data Controller, Multicare Medical Ltd, brookside House, Burnsall Road, Coventry, CV5 6BU
- By phone – 024 7647 2600
5. The data we collect from you
- Contact information such as email addresses, postal address and telephone numbers.
- System information, such as IP Address, browser type and version, and operating system.
- Information about your activity on our site.
- Other publicly available information, including any which you have shared via a public platform such as LinkedIn.
6. How We Use Your Data
- All personal data is processed and stored securely.
- Your personal data will be deleted after 6 years
- Where we have a legal obligation to keep it longer than 6 years (e.g. for registration of a medical device) we will delete it as soon as our legal obligation is discharged.
- We may keep your data longer if we are involved in a legal claim or dispute. Where this is the case we will delete it as soon as such claim or dispute is resolved.
- Our use of your data will always have a legal basis (as set out in Section 7), and we may use your data for the following purposes:
- Managing your access to our website and other online services such as our servicing portal.
- Personalising and tailoring your experience on our website and services.
- Providing and managing your account on our website and other online services.
- Communicating with you (replying to your emails and enquiries).
- To provide you with goods and services as ordered.
- Market research.
- Analysing your use of our site and services, gathering feedback, to continually improve our site and your experience.
- To provide you with important safety and product updates, such as product recalls, Field Safety Notices or Medical Device Alerts
- You will always be able to unsubscribe or opt-out from this use at any time.
7. Legal Basis
- Your data will be processed under the following legal basis according to GDPR because.
- It is necessary for our performance of a contract with you; or
- You have consented to our use of your personal data; or
- We are complying with a legal obligation; or
- It is necessary in pursuit of our legitimate interests – detailed below.
- Where our processing of your data is based on our legitimate interests, we will have ensured that such processing is necessary and we will not do so where our interests are over-ridden by yours.
- Our legitimate interests include:
- Selling and supplying our services to customers and potential customers.
- Handling customer and potential customer contacts, queries, complaints or disputes.
- Understanding our customers’ (or potential customers’) behaviour, activities, and preferences.
- Improving our products and services, including developing new products and services.
- Promoting, marketing, and advertising our goods and services.
- Distribution of Product Recall, Field Safety Notices and Medical Device Alerts
- For further information on our legitimate interest basis, you can ask for a copy of our Legitimate Interest Assessment (LIA) by using the contact details set out in Section 4.
8. Storing And Sharing Your Data
- Data security is very important to us and we take appropriate security measures to safeguard and secure your data which is collected via our website and services.
- We endeavour to keep all of your personal information in the European Economic Area (EEA). The EEA includes all EU Member States plus Norway, Iceland, and Liechtenstein.
- In limited, and necessary, circumstances your information may be transferred outside of the EEA; this will only happen where it can’t be avoided. Where this does happen, we will put special protections in place. We will only move data to countries or organisations:
- Where the EU Commission has deemed their data protection measures to be adequate.
- Or under a contract which enforces the EU Commission approved “standard data protection clauses” which can be viewed at: https://ec.europa.eu/justice/data-protection/international-transfers/transfer/index_en.htm
9. We will never sell or otherwise transfer or disclose your personal data to any third party except:
- We may sometimes contract with trusted service providers to provide goods and services on our behalf. These may include payment processing, delivery of goods, search engine facilities, advertising, marketing and IT systems. This will sometimes necessitate the transfer of your personal data to those trusted service providers.
- Where we transfer your data to our trusted service providers we will have confirmed that they will apply data protection and security measures to the same standard we would. We will always impose contractual terms on all of our providers to ensure your data remains secure.
- In certain limited circumstances we may be legally required to share your personal data – for example where we are involved in legal proceedings, where we complying with a court order, regulatory requirement or government department with appropriate legal authority to compel us to do so.
- For example, we may monitor how many times you visit the website, which company you work for which pages you go to, traffic data, location data and the originating domain name of a user’s internet service provider. This information helps us to build a profile of our users. Some of this data will be aggregated or statistical, which means that we will not be able to identify you individually.
11. Changes to Our Privacy Notice
- We may change this privacy notice from time to time (for example, if the law changes). Any changes will be immediately posted on our site.
- This privacy notice was last updated in November 2018.