1. WHAT THIS POLICY COVERS
This privacy policy aims to give you information on how we collect and process your data through your use of our Platform.
JUST Doctor – Web Application
JUST Doctor – APPs
2. WHAT DATA WE COLLECT ABOUT YOU
This privacy policy aims to give you information on how we collect and process your data through your use of our Platform.
Patients using NHS Services –
We provide software services to NHS Organisations. These organisations (Data Controller) are responsible for how your information is used in our platform. We ( Data processor ) process the information as instructed by the organisation. We have a clear agreement with your NHS Organisation, that sets out what we do with the data and how we process and keep it safe.
Please note that if you access our service using your NHS login details, the identity verification services are managed by NHS Digital. NHS Digital is the controller for any personal information you provided to NHS Digital to get an NHS login account and verify your identity and uses that personal information solely for that single purpose. For this personal information, our role is a “processor” only and we must act under the instructions provided by NHS Digital (as the “controller”) when verifying your identity. To see NHS Digital’s Privacy Notice and Terms and Conditions, please click here. This restriction does not apply to the personal information you provide to us separately.
We collect only the data relevant to conduct our legal contract
Using our APP and Web Application we collect and process information about your health.
The information is from yourself and from your health care professional
Your details are shared with Health care professional with your consent when you sign up with JUST Doctor
We send all your private consultations to your registered health care professional with your consent
We hold details of your conversations with us for support, Technical calls, Chats, Messages and Visit notes
If you use a third-party device or apps to connect to JUST Doctor, we ask your permission to receive health data from third party devices.
For Private patients, if you are making a payment to a health care professional using your debit or credit card using our platform, we do not hold any card details and they are processed by a third-party payment provider.
If you make a payment on the app, your credit and debit card details are processed by a third party provider . We do not store any of credit or debit card information and we only keep the details of the transaction securely for your reference.
We do not use any health information about you.
We use cookies saved in your phone, tablet, or computer, when you visit our site external pages only. They collect information about how you browse our website pages. We do not use cookies on your health and medical Information.
Our web and Mobile APPs require the below permissions for APP functions .
Our web and APP solutions ask you to update your location , this is to help you find the nearest services ( Private or NHS services ) from your current location . You can switch these services On and Off any time . This service is also used to validate your health and well being diary , Appointments times depending on your time zone to provide you with an entry appropriate to the time zone.
Camera –Use of camera is to take pictures , videos and to conduct a video consultation with your health care professional.
Microphone – To conduct a Video Consultation and to record audio .
Bluetooth – To sync with blue tooth devices to obtain readings – Example – Blood pressure, pulse oximeter.
You can disable or enable them from Phone settings
3. WHAT WE USE YOUR DATA FOR
This is how we use your data and legal reasons for it
We need your personal details for your registration with our product, to enter a contract to deliver services.
The health data and health information provided by you and your health care provider is shared between both with consent.We allow your health care professional to share clinicalinformation,treatments, Medication details, health parameter details and provide health advice on your condition using online and Video Consultation tools with you and with other health and care professionals involved in your care. (GPs, Hospitals, Community Care,Therapist,Pharmacist)
The information is about
We use your feedbacks to improve our Health information platform. We collect unidentified health information from health diary on Blood Pressure entry , Weight , BMI and Mood. This data is collected only to analyse and measure the benefits of the APP in risk reduction. We do not store any identifiable data to the readings.
We collect data from devices when you have an outage using our product to find out the reasons behind the outage.
We send you notifications and text messages about your Appointments and Health promotion messages to assist and to remind you about your appointments. The notifications and text Messages may come from JUST Doctor or from your Health care Professional Organisation using JUST Doctor Platform.
We may contact you with marketing messages, product updates,surveys, and information on our product. You can opt in or out by going to settings, privacy controls of your APP and in your account settings when using Web application.
We use your health information for Training, Safety, Regulatory and Compliance Purpose.
This means that :
To detect and prevent fraud, we may need to share your personal and financial information with banks, financial institutions, and fraud prevention services.
4. HOW WE STORE AND MOVE YOUR DATA
Your data are stored in our secured servers.
Your Personal data
Your Medical and Health Data (Consultations, Chats, Messages, and all about your health)
We do not hold any information locally in your devices (Mobile Devices)
We are committed to keeping your personal and Health information you provide us secure and we will take reasonable precautions to protect your personal information from loss, misuse, or alteration.
We have implemented information security policies, rules, and technical measures to protect the personal information that we have under our control from:
All our employees and data processors (i.e., those who process your personal information on our behalf, for the purposes listed above), who have access to, and are associated with the processing of personal information, are obliged to respect the confidentiality of the personal information.
You are responsible for keeping your password and/or authentication method confidential. Please do not share it with anyone.
For making payments to your private practice appointments and for JUST Doctor, we do not store any of your credit card details and they are processed by a third-party provider. They follow strict industry data security standards. These are known as Level 1 Payment Card Industry (PCI) data security standards.
Your Data is stored locally with in UK and not processed outside UK and we operate in line with Data Protection guidelines.
We share your Personal Data with Healthcare Organisations involved in your care and with organisations (NHS) using JUST Doctor as a solution. We may share your personal data with private organisations to assist with support and chat. These companies can only use your data on our instructions, and they have contractual terms, and they have to act in line with data protection laws.
If you use our services through our partner Organisation (Health Insurer), we may share some of your information with them. We do not share your Medical and Health Information.
We share the below information.
Name, Date of Birth, E-Mail, Telephone, Address and Policy Number
Health Care Organisation
We will share your details with Health and Care Organisations involved in your care.
By law, we may need to share information with these services to safeguard either you or others or conduct a public task (in the case of our NHS services). We may need your consent, or to rely on our legitimate interests to provide you with healthcare before we can share this information.
We may use your health data to protect the public.
Your data could be vital to help research, monitor, track and manage public health emergencies, like pandemics.
In a public health emergency, your information may be shared in a way that is appropriate and lawful with organisations such as:
We will limit the use or sharing of data to the period of the emergency and will only share data to the extent necessary.
We also collect, use, and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data could be derived from your personal data but is not considered personal data in law as this data will not directly or indirectly reveal your identity.
We share your data across NHS organisations involved in your care if you choose to use our NHS solution. The organisations include GPs, Hospitals, Pharmacies, Urgent care, Accident and Emergencies and Ambulance services.
Our solution is integrated with existing NHS solution and we share your data for identification and to share medical and health details.
If you are a resident in a nursing and care home, we share your data with your resident care organisation for identification and to share health information with your NHS care provider.
NHS Organisations offer Online and Video Consultations services through JUST Doctor platform. JUST Doctor has gone through all stringent assessment, scrutiny and achieved standard to provide this service. NHS England along with NHS Organisations ( GP Practices, NHS Trusts ) act as a joint controller for this system. Your NHS Organisation remain responsible for your data and will ensure that any data you provide to use this service is used only for specific contracted NHS services.
JUST Doctor acts as a Data processor of your personal data under GDPR providing service to NHS Organisations.
We collect the listed data in paragraph (2) for registered JUST Doctor users. For NHS guest users we process your ID Details to NHS organisations to conduct the consultation by verifying your Identity to provide the service securely and confidentially. This ID Information is deleted at the end of the consultation.
These records are patient information records received from your GP and NHS records. These are viewed only by authorised staff involved in your direct health care. If you do not wish to share you can opt own by contacting your GP or NHS Organisation or remove the link from your linked practices and to fill an opt out form at your GP practice.
We may keep or share information about you if we need to :
5. HOW LONG WE KEEP YOUR DATA
We will only retain your personal data in line with the UK Electronic Health data guidelines, for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting, or other requirements.
We follow advice of British medical Association and Department of health guidelines on how long to retain your records, this is also called retention period for NHS services .
You are in control of your personal information. Under data protection law, you have the right to:
To do any of these things, please contact us at:
Data Protection Officer
JUST Doctor
86 Twinnies Lane
Wilmslow
SK9 4BP
United Kingdom
Or mail to hello@justdoctor.co.uk
We will ask you for a proof of identity. Data protection laws give us one month to get back to you.
We are regulated by the Information Commissioner's Office (ICO). If you are not happy with any aspect of our data handling, you can complain to the ICO directly.
You can contact them at:
Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Phone: 0303 123 1113
7. THIRD PARTY LINKS
This website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.
8. CHANGES TO THIS PRIVACY POLICY
We may make changes to this privacy policy from time to time.
We may notify you by e-mail of any significant changes. However, we encourage you to review the privacy policy on our website periodically to be informed of how we use your personal information.
If you do not agree to the changes, then you can stop using our services at any time.
Last updated June 2024