Privacy Policy
Sharp Sight Eye Hospital is committed to protecting the privacy and security of your personal data. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information in compliance with the Nigeria Data Protection Regulation (NDPR) and the UK General Data Protection Regulation (UK GDPR).
Consent
By using our website, you hereby consent to our Privacy Policy and agree to its terms.
Information We Collect
We collect personal data necessary to provide you with quality healthcare services. This includes:
- Personal Information: Name, contact details (phone, email, address), date of birth, gender, and identification numbers (e.g., National ID).
- Health Information: Medical history, current health conditions, treatment records, and medications.
- Financial Information: Payment details and insurance information, when relevant.
- Website Usage Information: IP address, device information, and browsing behavior when you visit our website.
How We Use Your Information
We use your personal data for the following purposes:
- Provision of Services: To deliver healthcare services, diagnose conditions, manage treatments, and maintain health records.
- Communication: To respond to your inquiries, confirm appointments, send reminders, and provide information relevant to your healthcare.
- Payment Processing: To handle billing, payment processing, and insurance claims.
- Improving Services: To improve the functionality of our website and to enhance patient experience.
- Legal Obligations: To comply with regulatory requirements, reporting, and record-keeping as required by law.
Legal Basis for Processing
We process your personal data under one or more of the following legal bases:
- Consent: When you have given clear consent for processing your personal data.
- Contractual Necessity: When processing is necessary for fulfilling a healthcare or service agreement.
- Legal Obligation: When processing is required to comply with applicable laws and regulations.
- Legitimate Interest: When processing is necessary for our legitimate interests, provided these do not override your rights.
How We Share Your Information
We may share your personal data with:
- Healthcare Providers: Doctors, nurses, and medical staff involved in your care.
- Third-Party Service Providers: Organizations that assist us in payment processing, data storage, and IT support.
- Insurance Companies: To facilitate claims processing and secure reimbursements.
- Legal and Regulatory Bodies: When required to comply with legal obligations or for public health reasons.
We ensure that any third-party partners are bound by data protection agreements in compliance with NDPR and UK GDPR standards.
Data Security
We implement robust technical and organizational measures to protect your data from unauthorized access, disclosure, alteration, or destruction. This includes encryption, secure servers, and regular data audits.
International Data Transfers
If we transfer your personal data outside Nigeria or the UK, we ensure appropriate safeguards are in place to protect your information in accordance with NDPR and UK GDPR requirements. This includes using approved transfer mechanisms or seeking explicit consent when required.
Data Retention
We retain your personal data only for as long as necessary for the purposes outlined in this policy, or as required by law. Medical records are typically retained as per healthcare regulations, after which they are securely disposed of.
Your Data Protection Rights
Under the NDPR and UK GDPR, you have the following rights:
- Right to Access: You have the right to request copies of your personal data.
- Right to Rectification: You can request corrections to inaccurate or incomplete data.
- Right to Erasure: You can request deletion of personal data under certain conditions.
- Right to Restrict Processing: You can ask us to restrict the processing of your personal data in certain cases.
- Right to Object: You may object to the processing of your data for specific purposes.
- Right to Data Portability: You can request to receive your data in a structured, commonly used, and machine-readable format.
To exercise these rights, please contact us through this Link
Log Files
Sharp Sight Eye Hospital follows a standard procedure of using log files. These files log visitors when they visit websites. All hosting companies do this and a part of hosting services' analytics. The information collected by log files include internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date and time stamp, referring/exit pages, and possibly the number of clicks. These are not linked to any information that is personally identifiable. The purpose of the information is for analyzing trends, administering the site, tracking users' movement on the website, and gathering demographic information.
Cookies and Web Beacons
Like any other website, Sharp Sight Eye Hospital uses 'cookies'. These cookies are used to store information including visitors' preferences, and the pages on the website that the visitor accessed or visited. The information is used to optimize the users' experience by customizing our web page content based on visitors' browser type and/or other information.
Updates to this Policy
Sharp Sight Eye Hospital may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the updated policy on our website.
You also have the right to lodge a complaint with the Nigeria Data Protection Commission (NDPC) or the UK Information Commissioner’s Office (ICO) if you believe we have not addressed your concerns.