In order to provide a safe and professional service to our patients we collect and hold personal data. We have always respected the need to keep this information confidential and we welcome important new regulations to enhance data protection for our patients.
The General Data Protection Regulation (GDPR) from 25th May 2018 replaced data protection laws in the European Union. The data commissioner has a useful website for those wanting to find out more gdprandyou.ie.
Why do you collect my data?
We collect your personal information so that we can record and manage our service to you in a proper and professional way. We have a duty of care to you. In order to ensure that we meet the highest standards of health care, we must record our findings and patient plans. We must be able to individually identify you to ensure you get the correct care.
What data do you have about me?
We hold information such as your:
- Date of birth
- Medical card number
- Medical history from your GP or the Doctor/ health professional that referred you to us.
- Our own notes and records on your care with us.
- Copies of emails and letters that have been sent by us about your care
- A minority of patients’ records include photos and videos (but these are only retained for those who have given written consent).
How do I find out what information you hold?
You have a right to access your data free of charge and we are happy to provide you with a copy. You should contact us by phone on 091 796983 or write to the General Manager, APOS Ltd, The Weir, Kilcolgan, Co. Galway. We will send you a written copy of your data within one month of your request.
What do I do if there are errors in my data or I don’t want you to keep it anymore?
You should contact us by phone on 091 796983 or write to the General Manager, APOS Ltd, The Weir, KIlcolgan, Co. Galway. We will update your records and if you want us to remove your data we will do so unless there is a legal obligation to retain a record.
How long will you keep my data?
Your data is kept for a period of 8 years from the date of our last contact with you. Or if the patient was a child while they attended our service we will remove their records when they are aged 25. This is in line with the guidelines from the National Hospitals Office Code of Practice for Healthcare Records Management.
Who do you share my data with?
- Details such as name, address and telephone number may be passed to a courier or postal service so that items and letters can be delivered to you.
- Name, address, date of birth, medical card number and details of what and why we are supplying you will be shared with clinical/admin and financial personnel within the HSE.
- Private patients’ information is not shared with the HSE. We do not deal directly with health insurance companies. Copies of your information are supplied to you and it is for you to share those with the insurance company e.g. a receipt for our service.
- Information on our clinical findings and our plan may be shared with the health professional that referred you to our service or the health professional managing/organising the service you are attending. For example, many of our patients are seen in joint clinics with a physiotherapist. We would share information with the physiotherapist in this instance to better plan and manage your care.