Print
Category: Uncategorised
Hits: 1627

We at Harvey Optical are committed to the highest standards of privacy. We only collect data that is necessary for us to deliver the best possible service and ensure you are reminded about appointments or anything else relevant to your ongoing care. This policy provides detailed information on when and why we collect your personal information, how we use it, and the very limited conditions under which we may disclose it to others. Collection of your personal information

Harvey Opticals Limited, trading as Harvey Optical, is a registered data controller. We collect and process personal data for the purposes of healthcare and marketing.

Our legal bases for processing personal data for healthcare purposes, including appointment reminders, include public task or legitimate interests.

When we provide services under the NHS General Optical Services contract (such as a sight test funded by the NHS), our legal basis for processing personal data in respect of that service is public task.

Otherwise our legal basis is legitimate interests.

Our condition for processing special category data is the provision of health or social care.

We only process personal data for marketing purposes with your consent or to meet a legitimate interest. This means we can tell you about eye care products and services that may be relevant to you. If you do not want us to process your personal data for marketing purposes, please let us know and we will stop.

The data we may collect and process

The personal data that we may collect and process includes:

How we use this information

We may use your personal information for the purposes of:

How we store your information

We process your personal data in strict confidence. We keep your personal data securely in our filing and electronic systems. Patient records are only accessible to the healthcare professionals working at the practice and by those under their supervision. If we collect Direct Debits from you, will notify you in advance which company will be processed these payments. Any third-party company is only permitted to process your data for the specified purposes and in accordance with our instructions and your consent. Personal information will be retained by us for as long as is reasonably necessary (or as defined under applicable healthcare laws and regulations) to provide products and services, including aftercare services, and to maintain records as required to satisfy tax and other legal or regulatory requirements, as well as to protect and defend against claims. We will usually keep any personal data we hold about you for ten years after our last contact with you before we delete it. This is the period recommended as good practice by the College of Optometrists. If we collected the data when you were aged under 18 we will keep it until your 25th birthday, in line with NHS requirements. In exceptional cases we may need to retain personal data for a longer period and will explain our reasons for doing so on request.

How and when we may share your personal information

Where necessary we may disclose your information to health care professionals including the NHS. We may also pass information to external agencies and organisations, including the police, for the prevention and detection of fraud and criminal activity. Should any claim be made, we may pass your personal information to our insurers and if our business is wholly or partially transferred to a third party, your personal information may be one of the transferred assets.

In the course of processing your personal data we may share it with:

Your rights

How we protect your personal information

We use a variety of security technologies and procedures to help protect your personal information from unauthorised access and use. As effective as modern security practices are, no physical or electronic security system is entirely secure. We cannot guarantee the complete security of our database, nor can we guarantee that information you supply will not be intercepted while being transmitted to us over the internet. Any transmission is at your own risk. In the event that there is an interception of your personal information or unauthorised access or use of our database, we will not be liable or responsible for any resulting misuse of your personal information. We have no control over the contents of third party sites or resources which are linked to our website and we accept no responsibility or liability for them or the privacy practices they use or for any loss or damage that may arise from your use of such websites or resources.

Privacy Policy updates

We reserve our right to make any changes and updates to this privacy policy without giving you notice as and when we need to. Our most up to date privacy policy is always available on our website. Contacting us and the ICO about your personal data Please speak to us first if you have any questions or concerns about the way in which we process personal data. You can contact us by e-mail, using This email address is being protected from spambots. You need JavaScript enabled to view it., or write, addressing any letter: FAO Data Protection Officer, Harvey Optical, 1a Nottingham Road, Leicester, LE5 3TT. You have the right to complain to the ICO if you have a concern about our handling of your personal data which you do not think we can resolve. You can contact the ICO here.