GDPR Privacy Notice
At Smilestone Dental & Facial Clinic, we take the privacy and security of your personal data seriously. As part of our commitment to transparency and in compliance with the General Data Protection Regulation (GDPR), we want to inform you about how we collect, use, and protect your personal information.
1. Information We Collect
We may collect and process the following information:
-
Your name and contact details, including email address and phone number.
-
Your medical history and any relevant dental or facial treatment records.
-
Financial information for billing purposes.
2. How We Use Your Information
We use your personal information for the following purposes:
-
To schedule and manage your dental and facial appointments.
-
To provide you with dental and facial treatment services.
-
To send you reminders and updates regarding your appointments.
-
To process payments and maintain financial records.
3. Data Security
We have implemented strict security measures to protect your personal data from unauthorized access, disclosure, alteration, and destruction. Your information is stored securely and accessed only by authorized personnel.
4. Data Sharing
We do not share your personal information with third parties, except when required by law or to facilitate your dental or facial treatment, for instance, with dental laboratories.
5. Your Rights
You have the right to:
-
Access your personal data.
-
Correct any inaccuracies in your personal data.
-
Request the erasure of your personal data.
-
Object to the processing of your personal data.
-
Restrict the processing of your personal data.
-
Data portability.
6. Contact Us
If you have any questions about our GDPR compliance or how we handle your personal information, please contact our Data Protection Officer at [Insert Contact Information].
7. Changes to this Privacy Notice
We may update this Privacy Notice as necessary to reflect changes in our data processing practices. Any updates will be posted on our website.
Thank you for entrusting your dental and facial care to Smilestone Dental & Facial Clinic. We value your privacy and are committed to safeguarding your personal data.
Data protection policy
Smilestone Dental & Facial Clinic complies with the 1998 Data Protection Act and the Freedom of Information Act 2000, and this Policy describes our procedures for ensuring that personal information about patients is processed fairly and lawfully.
In order to provide you with a high standard of dental care and attention, we need to hold personal information about you. This personal data comprises:
-
Personal details such as your name, age, address, telephone numbers, email address and your general medical practitioner;
-
Your past and current medical and dental condition;
-
Radiographs, clinical photographs and study models;
-
Information about the treatment we have provided or propose to provide (and its cost);
-
Notes of conversations or incidents that might occur for which a record needs to be kept;
-
Records of consent to treatment;
-
Any correspondence (relating to you) with other healthcare professionals: such as referrals to specialists, for example.
We need to keep comprehensive and accurate personal data about our patients in order to provide them with safe and appropriate dental care.
We will process personal data that we hold about you in the following way:
We will retain your dental records while you are a practice patient. If you cease to be a patient, we will continue to hold them for at least another eleven years, or in the case of children until they reach the age of 25, whichever is the longer.
Personal data about you is held in the practice’s computer system and/or in a manual filing system. The information is not accessible to the public and only authorised members of staff have access to it. Our computer system has secure audit trails and we back up information on every working day.
In order to provide proper and safe dental care, we may need to disclose personal information about you to:
-
Your general medical practitioner;
-
The hospital or community dental services;
-
Other health professionals caring for you;
-
Dental Insurance Companies of which you are a member.
-
Private dental schemes of which you are a member.
Disclosure will take place on a “need-to-know” basis. Information will only be given to those individuals/organisations who need to have it in order to provide care to you and for the proper administration of Government (whose personnel are also covered by strict confidentiality rules). The recipient will only be given the information that they need to know for these purposes.
In very limited circumstances or when required by law or by a court order, personal data may have to be disclosed to a third party not connected with your dental care. In all other situations, disclosure that is not covered by this Policy will occur only when we have your specific consent. Where possible you will be informed of these requests for disclosure.
You have the right to access the data that we hold about you and to receive a copy. Access may be obtained by making a request in writing. We will levy a fee of £10 for records that are copied. If a request is made to copy x-rays, an extra charge of £40 will be made. We will provide a copy of the record within 40 days of receipt of the request and fee and an explanation of your record should you require it.
If you move to another dental practice we may (at our discretion) loan original x-rays and provide copy notes direct to that practice free of charge on receipt of a written request from them to do so.
If you do not wish personal data we hold about you to be disclosed or used in the way that is described in this Policy, please discuss the matter with your dentist. You have the right to object, but please remember that this may affect our ability to provide you with dental care.
GDPR & DATA PROTECTION