MOBIO INTERACTIVE’S FAIR PROCESSING NOTICE
This notice explains what information we collect about you, how we store this information, how long we retain it and with whom and for which legal purpose we may share it.
01 December 2019
What do we use anonymised data for?
We use anonymised data to plan mental health programming. Specifically we use it to:
• Check the quality and efficiency of the services we provide
• Work out what illnesses people have, so we can plan and prioritise mental health training and ensure this meets the needs of patients in the future
• Review the training being provided to make sure it is of the highest standard
What do we use your sensitive and personal information for?
We do not use any sensitive or personal information to develop or deliver mental health services.
What are your rights?
We will respect your rights, as provided by the General Data Protection Regulation and the UK Data Protection Bill 2018, the Human Rights Act 1998 (HRA), the Health and Social Care Act 2012 (HSCA) as well as the common law duty of confidentiality. The Equality Act 2010 may also apply in some circumstances.
Your rights under Chapter 3, Articles 12-23 of the GDPR:
• Right to be informed
• Right of access
• Right to rectification
• Right to erasure (in certain circumstances)
• Right to restrict processing
• Right to data portability
• Right to object
• Rights related to automated decision-making including profiling
We will also ensure that the data opt-out is adhered to, and respect your wishes not to share information beyond our platform, where you have selected to exercise this right. Opt-outs are explained in detail in the section entitled ‘Your right to opt out’.
What safeguards are in place to ensure data that identifies me is secure?
We only use information that may identify you in accordance with the Data Protection Act 2018. The Data Protection Act requires us to process personal data only if there is a legitimate basis for doing so and that any processing must be fair and lawful.
The NHS Digital Code of Practice on Confidential Information applies to all of our staff, and they are required to protect your information, inform you of how your information will be used, and allow you to decide if and how your information can be shared. All MI staff are expected to make sure information is kept confidential and receive annual training on how to do this. This is monitored by our Privacy Officer and can be enforced through disciplinary procedures.
We also ensure the information we hold is kept in secure locations, restrict access to information to authorised personnel only, protect personal and confidential information held on equipment such as laptops with encryption (which masks data so that unauthorised users cannot see or make sense of it).
We will ensure external data processors that support us are legally and contractually bound to operate and prove security arrangements are in place where data that could or does identify a person are processed.
MI has a Security Specialist responsible for protecting the confidentiality of user information. If you have any questions regarding the confidentiality of your information, you can contact us at firstname.lastname@example.org.
MI is registered with the Information Commissioner’s Office (ICO) as a data controller and collects data for a variety of purposes. A copy of the registration is available through the ICO website (search by Mobio Interactive by name).
If you have previously given MI consent to use your identifiable data you are able to withdraw that consent at any time, please contact us at email@example.com.
Gaining access to the data we hold about you
If you wish to have sight of, or obtain copies of your of your personal data you will need to write to us firstname.lastname@example.org You do not need to give a reason to see your data, and will not be charged a fee. Under special circumstances, some information may be withheld.
Your right to opt out
You have the right to request that your personal information is not used beyond your own care and to have your objections considered.
What is the right to know?
The Freedom of Information Act 2000 (FOIA) gives people a general right of access to information held by or on behalf of public authorities, promoting a culture of openness and accountability across the public sector.
What sort of information can I request?
In theory, you can request any information that M I holds that does not fall under an exemption. You may not ask for information that is covered by the Data Protection Act.
How do I make a request for information?
Your request must be in writing or emailed. Please contact us at email@example.com
Data Protection Officer
MI has a Data Protection Officer who ensures the laws protecting personal data are applied and adhered to. MI's DPO is:
Ms. Ramya Loganathan
Information Commissioners Office
For independent advice about data protection, privacy, data sharing issues and your rights you can contact:
Information Commissioner’s Office
Wycliffe House, Water Lane Wilmslow Cheshire, SK9 5AF
Telephone: 0303 123 1113 (local rate) or 01625 545 745
Visit the ICO website.
Complaints or questions
We try to meet the highest standards when collecting and using personal information. For this reason, we take any complaints we receive about this very seriously. We encourage people to bring concerns to our attention if they think that our collection or use of information is unfair, misleading or inappropriate.
Please contact us at firstname.lastname@example.org.