Privacy Policy
Privacy Policy for Atlas Laboratories Ltd.
Effective Date: 12.12.2023
At Atlas Laboratories Ltd.(“we,” “our,” “us”), we are committed to maintaining the privacy and protection of your personal and health information. As a leading provider of blood testing services in the UK, we understand the sensitive nature of the data we collect, and we are dedicated to safeguarding your information in compliance with the highest standards.
This Privacy Policy outlines how we collect, use, store, and protect your personal and health information in connection with our services.
By using our services, you consent to the collection and use of your personal information as described in this Privacy Policy.
1. Information We Collect
We collect the following types of personal information when you use our services:
Personal Identifiable Information (PII):
Name, date of birth, contact details (address, phone number, email address), and emergency contact information.
Health Information:
Blood test results, medical history, prescribed medications, referral details, and other health-related data provided by you or your healthcare provider.
Test Result Information:
Including your test results, any escalation related to your test results, any doctor commentary from consultation on your test results, any consultation and/or prescription(s) relating to your results. Where relevant, test results data also includes analytics to provide actionable insights related to your health, and any ongoing trends.
Payment Information:
Credit/debit card details or other billing information for processing payments.
Technical Information:
Information about the device and browser you use to access our website, IP addresses, cookies, and other similar technical data. Further details on how cookies and tracking technologies are used are set out in Section 11 below.
Referral Information:
Data provided by medical professionals or healthcare providers who refer you for blood tests.
2. How We Use Your Information
We use the information we collect for the following purposes:
Providing Services:
To conduct blood tests, process laboratory results, and deliver reports to you or your healthcare provider.
Medical Record Keeping:
To maintain accurate and comprehensive medical records related to your test results and health information.
Communication:
To notify you about the status of your test results, appointment reminders, and other service-related updates. We may also send you promotional or informational communications, which you can opt out of at any time.
Billing and Payments:
To process payments for blood testing and other services provided.
Legal and Regulatory Compliance:
To comply with legal and regulatory obligations, including those under the Care Quality Commission (CQC) and UKAS standards. This includes the management of medical records and the reporting of certain health information to health authorities when required by law.
Quality Assurance and Accreditation:
We may use anonymised data to ensure we meet the quality standards required by our UKAS-accredited laboratory partners and to maintain our accreditation.
3. Data Sharing and Disclosure
We may share your personal and health information under the following circumstances:
With Healthcare Providers:
We may share your test results, medical information, and health data with your healthcare provider or the referring medical professional, as necessary for your ongoing care or treatment, with your consent.
With UKAS-Accredited Laboratory Partners:
As part of our commitment to providing high-quality and accurate testing, we may partner with UKAS-accredited laboratories. These laboratory partners may receive relevant health information to perform the necessary tests, but only to the extent required for those purposes, using ISO 27001-certified infrastructure where applicable.
With CQC and Regulatory Bodies:
We may disclose your personal or health information to the Care Quality Commission (CQC) or other relevant authorities if required to comply with healthcare regulations or inspections.
With Service Providers:
We may engage third-party providers to assist with business operations such as payment processing, technical support, and data storage. These service providers are contractually obligated to keep your data secure and confidential.
For Legal Compliance:
We may disclose your personal or health information in response to legal requests such as court orders or other legal processes.
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
4. Data Retention
We retain your personal and health information for as long as necessary to fulfil thepurposes outlinedin this Privacy Policy, including compliance with legal, regulatory, clinical, and accounting requirements. After the applicable retention period, data issecurely deleted or anonymised.
5. Security of Your Information
We implement robust technical and organisational security measures to protect your personal and health data, including encryption, secure servers, firewalls, access controls, and restricted access procedures.
Our UKAS-accredited laboratory partners also follow strict security protocols to safeguard your data during testing and processing. However, no method of data transmission over the internet is completely secure, and while we strive to protect your data, we cannot guarantee absolute security.
6. Your Rights and Choices
Under the UK General Data Protection Regulation (UK GDPR) and other applicableUK data protection laws, you have the following rights:
Access:
You may request a copy of the personal and health information we hold about you.
Correction:
You may request that inaccurate or incomplete information be corrected.
Deletion:
You may request deletion of your personal or health information, subject to legal, regulatory, and medical retention obligations.
Opt-Out of Marketing Communications:
You may opt out of receiving promotional or informational communications at anytime.
Data Portability:
You may request a copy of your personal health information in a structured, commonly used format.
Withdrawal of Consent:
Where processing is based on consent, you may withdraw that consent at anytime.
To exercise any of these rights, please contact us using the details provided in the “Contact Us” section below.
7. Third-Party Links
Our website may contain links to third-party websites or services. We are not responsible for the privacy practices or content of those third-party sites and encourage you to review their privacy policies before providing any personal information.
8. Children & Young People Privacy
Our website and services are not intended for, and must not be used by, anyone under the age of 18.
We do not knowingly collect personal or health information from children. If we become aware that information has been collected from a child under the age of 18, we will take steps to delete such information promptly.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When changes are made, we will post the updated policy on our website and revise the “Effective Date” at the top of the page.
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
10. Contact Us
Atlas Laboratories Ltd. is a privately owned company with its registered office at:
Suite 3, The Colony Buildings
Altrincham Road
Wilmslow
SK9 4LY
United Kingdom
Email:[email protected]
Phone: 0333 050 3147
You may also contact us using the contact form available on our website.
Data Protection Officer (DPO)
Our Data Protection Officer is responsible for overseeing the protection and privacy of your personal data.
Name: Holly Devine
Address: Suite 3, The Colony Buildings, Altrincham Road, Wilmslow, SK9 4LY
Email: [email protected]
Phone: 0333 050 3147
We are registered with the Information Commissioner’s Office (ICO) under registration numberZB641562.
The Right to Complain
If you have concerns about how we handle your personal data, we ask that you contact us first so we can investigate and resolve the matter. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO).
11. Cookies and Tracking Technologies
We use cookies and similar technologies to operate our website and, with your consent, to measure and improve our advertising.
Cookies are small text files placed on your device when you visit a website. Similar technologies such as pixels and tags may also be used.
Strictly Necessary Cookies:
These cookies are essential for the operation of our website and cannot be switched off. They enable core functionality such as security, accessibility, and page navigation.
Legal basis: Legitimate interest (Article 6(1)(f) UK GDPR)
Advertising and Analytics Cookies:
With your consent, we use advertising and analytics cookies to understand how visitors interact with our website and to measure the effectiveness of our advertising.
This includes third-party tracking technologies such as the Meta Pixel, provided by Meta Platforms Ireland Ltd.
These technologies may collect information such as:
- Pages visited and actions taken on the website
- Interaction with advertisements
- IP address (which may be anonymised)
- Device, operating system, and browser information
Advertising and analytics cookies are only activated after you provide consent via our cookie banner. If consent is not given, these technologies are not used.
Legal basis: Consent (Article 6(1)(a) UK GDPR)
Managing Cookie Preferences:
You can manage or withdraw your cookie consent at any time through the cookie settings available on our website.
Third-Party Processing (Meta):
Where you have provided consent, limited technical data may be shared with advertising partners such as Meta Platforms Ireland Ltd., which processes personal data in accordance with its own privacy policy.
For more information, please see:
https://www.facebook.com/privacy/policy/
Note Regarding UKAS and CQC Compliance
UKAS Accreditation:
Our UKAS-accredited laboratory partners follow strict protocols to ensure the accuracy, reliability, and integrity of test results.
CQC Compliance:
Atlas Laboratories Ltd. is committed to complying with Care Quality Commission(CQC) standards to ensure that our services are safe, effective, and of the highest quality.