3. Service Providers

​

We may employ a third party company or individuals to facilitate our service (“ Service Providers “), to provide the Service on our behalf, to perform Service-related services is to asst us in analysing how our Service is used.

These third parties have access to your Cookie Data  but not Personal or Special Category data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose. 

​

Analytics

 

We may use third-party Service Providers to monitor and analyse the use of our Service. The details of which we have provided above ( See Special Category Data )

​

​

4. Transfer of Personal Data and its Security

​

 

We take all appropriate security and legal precautions to safeguard the safety and integrity of all of your personal data and the Special Category Data that is collected and used within the company. Your personal data will only be accessed by persons within the Treatment Provider organisation and Bloomsbury Health Limited who have a legitimate need to do so.

 

Access to the confidential data we collect is limited and we have policies and procedures in place to safeguard your information from loss, miss use and improper disclosure.

 

All of our employees are subject to a company privacy and confidentiality policy which ensures that they are contracted to understand your confidentiality requirements and will work to the best of their ability inline with this policy.

​

 

5. Your Rights and our Complaints Procedure.

​

You have the following rights in relation to your personal  data;-

​

 You have access the data we hold  about you;

 If you note that you data is incorrect or incomplete you have the right to have that data corrected;

 You may opt out but your Treatment Provider may not be able to offer you some services;

 You may request that your Treatment Provider delete your personal data ( this subject to any legal requirement to retain such data );

You may request a copy of your personal data from your Treatment Provider, this may take up to thirty ( 30 ) days;

You have the right to  withdraw your consent to the use of any of your personal data for which you have previously given your consent to the use of;

Your Treatment Provider has complaints procedure which we will deal with any complaints  you may have and will acknowledge your complaint and ensure it is investigated honestly and fairly and inform you how it will be handled.

You can contact your Treatment Provider's: 

Information Governance Lead

Caldicott Guardian

Accountable Officer

Data Protection Officer

​

Please see their organisation website for details.

​

If you have any other queries or wish to exercise any of your rights in respect of your personal data not addressed by your Treatment Provider within 30 days please contact our Data Protection Officer.

​

If your Treatment Provider or we can't resolve your concern, you have the right to lodge a complaint with the Information Commissioner's Office.

​
 

6. Who We, or your Treatment Provider, may disclose your Personal Information to.

 

We or your Treatment Provider will disclose your personal information to the following;-

​

As described in clause 2 of this policy;

If required by law;

If disclosure is believed to be appropriate to enforce any of these terms and conditions, to protect and defend rights, property or safety;

In compliance of any court order, proceeding or under any other legal obligation, regulatory or  government requirement

​

We are obliged under current laws and jurisdiction to report suspicious activity to the relevant regulatory authorities. We will also report any suspected criminal activity to the relevant law enforcement body. In some circumstances we may not be permitted to inform you about this in advance of any disclosure, or at all.

​

There are no third party recipients of personal data only your Treatment Provider Organisation whom are the Data Controller and who might be:

NHS

Acute NHS Trust

Public Health England

Prison Health

Mental Health Trust

Clinical Commissioning Group

Commissioning Support Unit

Community Health Provider

Data Service for Commissioners

Dental Practice

Eye Care Services

General Practice

Health and Social care Information Centre

Local Authority

Private Hospitals

Private Clinics

​

7. How long do we retain your Personal Information

​

We retain your personal information only as long as it is needed by your Treatment Provider thereafter we only retain any information as long as it is required under the regulatory requirements your Treatment Provider is subject to.

​

To ensure your Treatment Provider meets their legal liabilities they may retain some information for a significant time.  Examples of the reason for this could be, to protect, defend  or exercise their legal rights rights or for archiving  and historical purposes.

​

8. Data Security and Breaches

​

We and your Treatment Provider has put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we and your Treatment Provider  limit access to your personal data to those employees, agents, staff, contractors and other third parties who have a business need to know. They will only process your personal data on your Treatment Providers instructions and they are subject to a duty of confidentiality.

We and your Treatment Provider have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

If there is a security breach, or a suspected security breach your Treatment Provider will inform you of the breach or suspected breach immediately it is known to them and report it to the appropriate regulatory body.

Once such a breach is discovered we will use all reasonable business measures  to correct the breach and  prevent any further breaches and recover or delete any lost in formation.

​

9 Your Legal Rights

​

Under certain circumstances, you have rights under data protection laws ( General Data Protection Regulations ) in relation to your personal data. Specifically, you have the right to:

●      Request access to your personal data;

●      Request correction of your personal data;

●      Request erasure of your personal data;

●      Object to processing of your personal data;

●      Request restriction of processing your personal data;

●      Request transfer of your personal data;

●      Right to withdraw consent;

​

If you wish to exercise any of the rights set out above, please contact your Treatment Provider.

​

Request access to your personal data (commonly known as a “data subject access request”) from your Treatment Provider

This enables you to receive a copy of the personal data held about you and to check that your Treatment Provider are lawfully processing it.

​

Request correction of the personal data that your Treatment Provider holds about you.

This enables you to have any incomplete or inaccurate data held about you corrected, though your Treatment Provider may need to verify the accuracy of the new data you provide. We ask that you update your Treatment Provider with any changes to your personal information.

​

Request erasure of your personal data.

This enables you to ask your Treatment Provider to delete or remove personal data where there is no good reason for them continuing to process it. You also have the right to ask your Treatment Provider to delete or remove your personal data where you have successfully exercised your right to object to processing (see below), where we or your Treatment Provider may have processed your information unlawfully or where we or your Treatment Provider are required to erase your personal data to comply with local law. Note, however, that your Treatment Provider may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.

 

Object to processing of your personal data

Where your Treatment Provider is relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. In some cases, your Treatment Provider may demonstrate they have compelling legitimate grounds to process your information which override your rights and freedoms.

 

Request restriction of processing of your personal data.

This enables you to ask your Treatment Provider to suspend the processing of your personal data in the following scenarios:

●      If you want to establish the data’s accuracy.

●      Where your Treatment Providers  use of the data is unlawful but you do not want them to erase it.

●      Where you need your Treatment Provider to hold the data even if they no longer require it as you need it to establish, exercise or defend legal claims.

●      You have objected to Your Treatment Provider’s use of your data but they need to verify whether they have overriding legitimate grounds to use it.

 

Request the transfer of your personal data to you or to a third party. Your Treatment Provider will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for your Treatment Provider to use or where they used the information to perform a contract with you.

​

Withdraw consent at any time where we are relying on consent to process your personal data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, your Treatment Provider may not be able to provide certain products or services to you. Your Treatment Provider will advise you if this is the case at the time you withdraw your consent.

 

NO FEE USUALLY REQUIRED

 

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, your Treatment Provider may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, Your Treatment Provider  could refuse to comply with your request in these circumstances.

 

WHAT YOUR TREATMENT PROVIDER MAY NEED FROM YOU

 

Your Treatment Provider may need to request specific information from you to help them confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. Your Treatment Provider may also contact you to ask you for further information in relation to your request to speed up their response.

​

TIME LIMIT TO RESPOND

​

Your Treatment Provider will try to respond to all legitimate requests within one month. Occasionally it could take them longer than a month if your request is particularly complex or you have made a number of requests. In this case, they will notify you and keep you updated.

Performance of Contract means processing your data where it is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into such a contract.

​

10. International Transfers of Personal data

​

Your personal data will not be transferred to or stored outside of England.

 

11. Changes to this Policy

​

 

We will, from time to time, make changes to  this policy. This may be to ensure that we continue to be in line with the legal requirements and  any regulatory changes made in law. We may also change our practices to better serve our, your Treatment Provider's, and your needs. We will revise the, “last updated’” date at the top  of this notice and will, if such changes are material, post a prominent notice  of the changes on the website.

 

 

​

Accessibility Statement

​

​

Compliance status

​

We firmly believe that the internet should be available and accessible to anyone and are committed to providing a website that is accessible to the broadest possible audience, regardless of ability.

 

To fulfill this, we aim to adhere as strictly as possible to the World Wide Web Consortium’s (W3C) Web Content Accessibility Guidelines 2.1 (WCAG 2.1) at the AA level. These guidelines explain how to make web content accessible to people with a wide array of disabilities. Complying with those guidelines helps us ensure that the website is accessible to blind people, people with motor impairments, visual impairment, cognitive disabilities, and more.

 

This website utilizes various technologies that are meant to make it as accessible as possible at all times. We utilize an accessibility interface that allows persons with specific disabilities to adjust the website’s UI (user interface) and design it to their personal needs.

 

Additionally, the website utilizes an AI-based application that runs in the background and optimizes its accessibility level constantly. This application remediates the website’s HTML, adapts its functionality and behavior for screen-readers used by blind users, and for keyboard functions used by individuals with motor impairments.

 

If you wish to contact the website’s owner please use the following email help@bloomsburyhealth.org

 

Screen-reader and keyboard navigation

Our website implements the ARIA attributes (Accessible Rich Internet Applications) technique, alongside various behavioral changes, to ensure blind users visiting with screen-readers can read, comprehend, and enjoy the website’s functions. As soon as a user with a screen-reader enters your site, they immediately receive a prompt to enter the Screen-Reader Profile so they can browse and operate your site effectively. Here’s how our website covers some of the most important screen-reader requirements:

 

Screen-reader optimization: we run a process that learns the website’s components from top to bottom, to ensure ongoing compliance even when updating the website. In this process, we provide screen-readers with meaningful data using the ARIA set of attributes. For example, we provide accurate form labels; descriptions for actionable icons (social media icons, search icons, cart icons, etc.); validation guidance for form inputs; element roles such as buttons, menus, modal dialogues (popups), and others.

 

Additionally, the background process scans all of the website’s images. It provides an accurate and meaningful image-object-recognition-based description as an ALT (alternate text) tag for images that are not described. It will also extract texts embedded within the image using an OCR (optical character recognition) technology. To turn on screen-reader adjustments at any time, users need only to press the Alt+1 keyboard combination. Screen-reader users also get automatic announcements to turn the Screen-reader mode on as soon as they enter the website.

 

These adjustments are compatible with popular screen readers such as JAWS, NVDA, VoiceOver, and TalkBack.

 

Keyboard navigation optimization: The background process also adjusts the website’s HTML and adds various behaviors using JavaScript code to make the website operable by the keyboard. This includes the ability to navigate the website using the Tab and Shift+Tab keys, operate dropdowns with the arrow keys, close them with Esc, trigger buttons and links using the Enter key, navigate between radio and checkbox elements using the arrow keys, and fill them in with the Spacebar or Enter key.

 

Additionally, keyboard users will find content-skip menus available at any time by clicking Alt+2, or as the first element of the site while navigating with the keyboard. The background process also handles triggered popups by moving the keyboard focus towards them as soon as they appear, not allowing the focus to drift outside.

 

Users can also use shortcuts such as “M” (menus), “H” (headings), “F” (forms), “B” (buttons), and “G” (graphics) to jump to specific elements.

​

Disability profiles supported on our website

 

Epilepsy Safe Profile: this profile enables people with epilepsy to safely use the website by eliminating the risk of seizures resulting from flashing or blinking animations and risky color combinations.

 

Vision Impaired Profile: this profile adjusts the website so that it is accessible to the majority of visual impairments such as Degrading Eyesight, Tunnel Vision, Cataract, Glaucoma, and others.

 

Cognitive Disability Profile: this profile provides various assistive features to help users with cognitive disabilities such as Autism, Dyslexia, CVA, and others, to focus on the essential elements more easily.

 

ADHD Friendly Profile: this profile significantly reduces distractions and noise to help people with ADHD, and Neurodevelopmental disorders browse, read, and focus on the essential elements more easily.

 

Blind Users Profile (Screen-readers): this profile adjusts the website to be compatible with screen-readers such as JAWS, NVDA, VoiceOver, and TalkBack. A screen-reader is installed on the blind user’s computer, and this site is compatible with it.

 

Keyboard Navigation Profile (Motor-Impaired): this profile enables motor-impaired persons to operate the website using the keyboard Tab, Shift+Tab, and the Enter keys. Users can also use shortcuts such as “M” (menus), “H” (headings), “F” (forms), “B” (buttons), and “G” (graphics) to jump to specific elements.

 

Additional UI, design, and readability adjustments

​

Font adjustments – users can increase and decrease its size, change its family (type), adjust the spacing, alignment, line height, and more.

 

Color adjustments – users can select various color contrast profiles such as light, dark, inverted, and monochrome.

Additionally, users can swap color schemes of titles, texts, and backgrounds with over seven different coloring options.

 

Animations – epileptic users can stop all running animations with the click of a button. Animations controlled by the interface include videos, GIFs, and CSS flashing transitions.

 

Content highlighting – users can choose to emphasize essential elements such as links and titles. They can also choose to highlight focused or hovered elements only.

 

Audio muting – users with hearing devices may experience headaches or other issues due to automatic audio playing. This option lets users mute the entire website instantly.

 

Cognitive disorders – we utilize a search engine linked to Wikipedia and Wiktionary, allowing people with cognitive disorders to decipher meanings of phrases, initials, slang, and others.

 

Additional functions – we allow users to change cursor color and size, use a printing mode, enable a virtual keyboard, and many other functions.

​

Assistive technology and browser compatibility

We aim to support as many browsers and assistive technologies as possible, so our users can choose the best fitting tools for them, with as few limitations as possible. Therefore, we have worked very hard to be able to support all major systems that comprise over 95% of the user market share, including Google Chrome, Mozilla Firefox, Apple Safari, Opera and Microsoft Edge, JAWS, and NVDA (screen readers), both for Windows and MAC users.

 

Notes, comments, and feedback

Despite our very best efforts to allow anybody to adjust the website to their needs, there may still be pages or sections that are not fully accessible, are in the process of becoming accessible, or are lacking an adequate technological solution to make them accessible. Still, we are continually improving our accessibility, adding, updating, improving its options and features, and developing and adopting new technologies. All this is meant to reach the optimal level of accessibility following technological advancements. If you wish to contact the website’s owner, please use the following email help@bloomsburyhealth.org

​

​

We request that you read this policy from time to time and keep your personal information up to date at all times.