Allergy Medical aims to provide its patients with the best possible products and service. To achieve this, we aim to make efficient use of the personal information we collect from our patients. We also want our patients to have confidence that in handling personal information, we afford that information an appropriate level of privacy, consistent with the National Privacy Principles. This statement sets out our policy for dealing with your personal information. What is personal information? Personal information is any information about you that identifies you, or by which your identity can reasonably be ascertained. Allergy Medical (including its related bodies corporate) collects personal information from its patients and suppliers, or employees or officers of its patients and suppliers, for purposes relating to the products and services it offers. Those purposes include:
- responding to enquiries about services, products and accessories we offer
- receiving feedback and dealing with complaints
- processing orders and administering accounts
- providing patient support
- applications for employment
- marketing and promotional activities
- product development and market research
- meeting our regulatory and legal obligations.
Do we disclose personal information to anyone else? In providing you with a product or service, we may sometimes need to disclose your personal information to others. It is generally our policy not to disclose information to external organisations, however, an example of the types of organisations we may need to disclose information to in the course of providing a product or service are Allergy Medical suppliers (persons or companies outside Allergy Medical who are contracted to us to provide a particular service on our behalf). They might be mailing houses for bulk mailing of letters and notices, printers for marketing material and other service providers. Those contracted parties are not authorised by us to use personal information for anything other than the purpose for which we supplied that information to them. Sometimes, the law requires us to disclose personal information. We may also disclose personal information where the individual consents to us doing so. That consent may be written, verbal or implied from your conduct. Direct marketing From time to time, we may use personal information to inform our patients about our products and services, or about special offers and promotions that we think may be of interest to you. We will generally give you the opportunity to express a wish not to receive direct marketing communications. You can let us know at any time if you no longer wish to receive marketing material (by contacting us by any of the means set out below) and we will remove your details from our direct marketing database. Allergy Medical does not disclose personal information to organisations outside Allergy Medical and its related companies for the purposes of allowing them to direct market their products. However, we may join with other business associates of Allergy Medical in joint marketing of our respective products and services to patients. If the law requires us to provide you with information about our products or services, we will provide that information even if you have elected not to receive information about our products and services generally. Ensuring personal information is up-to-date We rely on the personal information we hold in conducting our business. Therefore, it is very important that the information we hold is accurate, complete and up-to-date. We do everything we can to ensure that the personal information we hold is accurate complete and up-to-date whenever we collect or use it. This means that from time to time, we will ask you to tell us if there are any changes to your personal information. If you find that information we hold about you is incorrect, please contact us immediately and we will correct it. Security of personal information Security of personal information is important to us and we take all reasonable precautions to protect personal information from misuse, loss, unauthorised access, modification or disclosure. Some of the ways we protect personal information include:
- external and internal premises security;
- restricting access to personal information only to staff who need it to perform their day to day functions;
- maintaining technology products to prevent unauthorised computer access or damage to electronically stored information, such as requiring identifiers and passwords, firewalls and anti-virus software; and
- maintaining physical security over paper records.