Duncan and Todd Opticians ("us", "we", or "our") operates www.duncananddtodd.com (the "Site"). This page informs you of our policies regarding the collection, use and disclosure of Personal Information we receive from users of the Site.
Collection of Personal Information
In addition to your basic contact information (name, date of birth, telephone numbers and addresses) we will collect other relevant details including current and past health and medical information, your examination results, payment details and lifestyle information. We may also store associated information received from other healthcare professionals as part of your ongoing care.
This information will primarily be collected from you as voluntarily provided to us, but we may also collect it from other sources where it is lawful to do so, including but not limited to, the NHS or other health care providers, institutions or individuals you have authorised to provide information on your behalf (eg parents or guardians), third party service providers, government, tax or law enforcement agencies, and other third parties. Such information can also be combined with information from public sources.
How we use this information
The information that we collect from you is used to ensure we provide you with the best and most appropriate products and services. In addition to your ongoing eye care, we will remind you when appointments are due and suggest relevant products, promotions or services that we believe would be of interest.
We use your contact information to respond to queries from you, and where appropriate collect your bank details to collect Direct Debit payments as agreed. We may occasionally contact you to ask for your feedback on services we have provided and to offer the opportunity to trial new products.
Our policy on storage, processing and retention of your information
To provision and manage our services, your data is stored and processed by Optix Software Ltd within their UK facilities that are certified to ISO27001. If we collect Direct Debits from you these payments will be processed by Eyecare Payments Ltd.
We use other organisations to help us process personal information but any third-party company is only permitted to process your data for the specified purposes as instructed by us and cannot use it for any other purpose.
We retain your information for as long as reasonably necessary to provide our products and services and to maintain records to satisfy tax and other legal requirements.
How and when we may share your Personal Information
Where necessary we may disclose your information to health care professionals including the NHS. We may also pass information to external agencies and organisations, including the police, for the prevention and detection of fraud and criminal activity. Should any claim be made, we may pass your personal information to our insurers and if our business is wholly or partially transferred to a third party, your personal information may be one of the transferred assets.
Your rights with respect to the Personal Information we hold
You are entitled to access the personal information that we hold on you; any such request should be made using our contact details below. If any data we hold is inaccurate, this will be corrected promptly on request. In certain circumstances you can request that we erase your data which we will do where this would not prevent us meeting our legal and regulatory obligations.
Updating your communication preferences
You may ask that we do not send you communications using any of the contact details we hold on our records, this may include your email, SMS, telephone and postal information. You may also request we restrict our communications to clinically necessary messages. Your personal preferences can be changed at any time by using the link at the end of every email and SMS message we send or by contacting your local branch.
Like many site operators, we collect information that your browser sends whenever you visit our Site ("Log Data"). This Log Data may include information such as your computer's Internet Protocol ("IP") address, location, browser type, browser version, operating system, the pages of our Site that you visit, the time and date of your visit, the time spent on those pages and other statistics.
Cookies are files with small amount of data, which may include an anonymous unique identifier. Cookies are sent to your browser from a web site and stored on your computer's hard drive.
Like many sites, we use "cookies" to collect information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Site.
The security of your Personal Information is important to us, but remember that no method of transmission over the Internet, or method of electronic storage, is 100% secure. We do strive to use the most effective acceptable means to protect your Personal Information including:
We use a variety of security technology and procedures to help protect your personal information from unauthorised access and use. Examples of these are shown below.
Encryption, meaning that information is hidden so that it cannot be read without special knowledge (such as a password). This is done with a secret code or what’s called a ‘cypher’. The hidden information is said to then be ‘encrypted’.
Controlling access to systems and networks as this allows us to stop people who are not allowed to view your personal information from getting access to it.
Training our staff so we make them aware of how to handle information and how and when to report when something goes wrong.
Regular testing of our technology and ways of working, including keeping up to date on the latest security updates.
Links To Other Sites
We have no control over, and assumes no responsibility for, the content, privacy policies, or practices of any third party sites or services.
Last updated: Sep 2020