Last updated: 24th October 2018
We may review and change this policy from time to time. When we do, we'll update this version located at https://www.thechiro/policies/privacy.
Let's go through a few definitions before we get started:
‘The Chiro’ is any or all of the the Wellington based Chiropractic practices referred to as The Chiro, for example The Chiro Johnsonville..
‘Patient’ or ‘Customer’ is a user of the services provided by The Chiro and whom has agreed to our Terms of Service.
‘Personal Information’ means information that can identify an individual.
Personal Information we collect
We collect personal data in a couple of different ways—directly and indirectly.
Personal Information we collect directly from you
We directly collect Personal Information if you complete a New patient Health History form and if you send an enquiry to us from our website, or get in touch with us by chat, email, or phone. We may also collect some Personal Information if you engage with us through social media.
This information can include your name, gender, date of birth, country of birth, addresses, telephone numbers, email addresses.
We do not directly collect any special categories of personal data about you. This includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, and genetic and biometric data. Nor do we collect any information about criminal convictions and offences.
Personal Information we collect indirectly
We indirectly collect Personal Information when someone is referred to our practice. A typical scenario would be when a healthcare professional refers a patient to our office and sends personal information about a patient. We may request personal information and health records and imaging from another health professional and/or a Picture Archiving and Communication System, eg a hospital or Pacific Radiology).
This information can include names, genders, dates of birth, countries of birth, residential addresses, telephone numbers, email addresses, a person’s emergency contacts, health insurance numbers, ACC claim details, health history, health status and patient treatment notes and records.
In addition, in order to improve our services, we use data that can be retrieved from cookies, and other technology whose purpose is gathering data about website use. This data may include:
Browser and hardware data, such as IP address, type of device, operating system, browser type, screen resolution, language, device make and model, as well as the versions of the above mentioned services.
Cookie and tracking technology data, which would include pages visited, time spent on pages, language preferences, and other anonymous traffic data.
How this information is used
Generally speaking, the Personal Information we collect is used by us to inform our decision making in how to best look after the Patient. The Personal Information we collect about our own Patients may also be used for billing, identification, authentication, and for contacting them if we need to.
We may, with consent, use email addresses to share reports, advice, news, tips, updates and special offers. People who receive these promotional emails can unsubscribe at any time, please email email@example.com with UNSUBSCRIBE in the subject line.
Personal Information relating to third parties will not be shared with any other entity unless the person it relates to has agreed to our terms and conditions.
We may use other data for a range of different purposes, provided we comply with applicable law and our contractual commitments, such as:
To deliver customer service and assist you with any inquiries you may have.
To analyze trends, administer or optimise our service, monitor usage or traffic patterns and gather demographic information about our user base as a whole.
To control unauthorised use or abuse of our database—or otherwise detect, investigate or prevent activities that may violate our policies or be illegal.
How information is disclosed
We work with third-party services in New Zealand and Australia, such as:
‘Cliniko’ our practice management software, located in Australia
‘Invoice Direct’, our ACC invoicing agent, located in New Zealand
‘Cliniq Apps’, our patient communication application, located in Australia.
that we allow access to Personal Information, and may use it on our behalf strictly for the purposes for which they are engaged. We minimise the amount of personal data that is utilised by these services, and we have ensured that these services process your data in accordance with the appropriate regulations. We are not responsible for the privacy policies and practices of these third-party services.
We may forward personal information and health records to another health professional if requested.
In rare circumstances, we may be obliged to disclose Personal Information if disclosure is required to comply with the law, if we believe it is necessary to protect our rights, or if the ownership and assets of The Chiro were to be transferred to another party.
The security of your Personal Information
We take security seriously, and so do our third party services. Data is encrypted, stored in state-of-the-art facilities, access is restricted to those who have a need to know, and the technology to maintain security is regularly reviewed.
In the event that there is a breach and your Personal Information that we have collected directly is at risk, you will be notified within 96 hours of discovering the breach. You will be informed of what information is at risk, steps that we have taken to ensure your safety, and what action we are taking or have taken to rectify the breach.
Access, correct or delete Personal Information about you
You can request access to the Personal Information you have provided to us, via email to firstname.lastname@example.org.
If you think there’s a problem with the Personal Information we hold about you, you can request a correction. This enables you to have any incomplete or inaccurate data we hold about you corrected.
If you want to request erasure of your Personal Information, we'll take all reasonable steps to do so unless we are required to keep it for legal reasons, which will be notified to you, if applicable, at the time of your request.
Questions or complaints