Privacy Statement

MIDOC respects and values the privacy of all our service users. We will only collect and use personal data as described below, in a way that is consistent with our obligations and your rights under GDPR. This privacy statement is underpinned by the GDPR principles contained in the HSE Data Protection Policy, https://www.hse.ie/eng/gdpr/hse-data-protection-policy/hse-data-protection-policy.pdf  

 

DPO Contact details:

Name: Mark Daly

Postal address: MIDOC, C/O Vista Primary Care Campus, Ballymore Road, Naas, Co. Kildare.

Phone number: 045 848 711

Email: markdaly@kdoc.ie

 

What personal data do MIDOC collect?

Patients who phone MIDOC will first reach a member of the call handling team.  The call handler will ask the patient for their demographics such as : full name, date of birth, address, gender, If the caller is not the patient the caller details will also be required (name, relationship to patient, phone number), daytime GP/ practice, and the nature of the medical complaint, medical card number and expiry date (where applicable), payment details, etc. These details are entered and stored electronically to be shared with the Triage nurse and consulting doctor.

 All Records of your consultation from the Triage nurse and consulting doctor will be entered and stored on the patient’s individual electronic file.

All calls are recorded. Only senior management personnel have access to call recordings which are only accessed for complaint investigation, quality and training purposes.  

MIDOC will only retain your personal data for as long as it is necessary to fulfil the purpose it is being processed for. All personal data collected by MIDOC  is retained in accordance with the HSE Record Retention Policy. The HSE Record Retention Policy is published on the HSE website at: www.hse.ie/eng/services/yourhealthservice/info/dp/recordretpolicy.pdf

When MIDOC no longer needs your personal data, they securely delete or destroy your personal data.

 

What do MIDOC use your personal data for?

MIDOC uses your personal data to provide safe and suitable medical care and to support administrative functions of our service e.g. accounts and billing, receipt of patient queries/ complaints, access requests, pharmacy queries, etc.

MIDOC will only request personal information that is necessary in order to provide our service from start to finish, to protect the vital interests of our patients and for legal obligations.

  

Does MIDOC share any personal data?

MIDOC will share patient health data under the following four categories: Health and Social Care providers, data processors with a contract, legal arrangements/ public health/ safety and third parties with explicit consent.

All patient consultations will be securely transmitted to the daytime practice/ GP nominated by the patient when contacting the service. This is in the interest patient safety and continuity of care.

If data needs to be sent to a 3rd party, it will be sent securely via registered post, HSE Healthmail, HSE Healthlink.

Health and Social Care Providers

The patient’s nominated daytime GP/ practice, co-op Medical Director for the processing of clinical complaints quality issue, palliative care teams, ambulance services, pharmacies,  COVID referrals, hospitals e.g. a&e referral,etc.

Tusla, Elderly Safeguarding Team

 

Data processors, with a contract

GP Practice Software Vendors, Telecoms platform, Call Recording platform, CCTV vendor.

 

Legal Arrangements Public Health/ Safety

Coroner, Social Protection, Gardai

 

Third parties with explicit patient consent

Solicitors, insurance companies, health insurance.

 

The above list(s) are not exhaustive.

 

Security Measures in place

MIDOC commissions regular security audits to ensure that appropriate measures are in place to secure patient data retained both electronically (eg. firewalls, anti-virus, anti-malware, encryption, access controls and security patches) and physically (restricted access, lock & key, etc.).

All staff in the service must adhere to a professional confidentiality code. This explicitly makes it clear their duties in relation to personal health information and the consequences of breaching that duty. Staff will only access patient data that they require to carry out their duty.

 

Your Rights

Under GDPR, patients have a number of rights, e.g. right to access, right to rectification, right to erasure and right to restriction of processing. Further information on these rights in the context of General Practice is described in the Guideline available at www.icgp.ie/data.

Right to access

Under Article 15 of GDPR, the patient has a right to access a copy of their medical record. If a patient wishes to make an access request, this will need to be done in writing to the HSE Service Manager Administrative Office at Beck Hse, Kilbride St, Tullamore, Co Offaly.  MIDOC will process your request in accordance with GDPR and FOI legislation.

 

------

 

This website is operated by Eolas Healthcare Ltd, they can be contacted by phone on 1850 302 702

This statement relates to our privacy practices in connection with this website.

What information do we collect?

Web server logs

When you visit this website, a range of information is automatically collected, including:

  • IP address – this is the identifying address for your computer in Internet Protocol (IP) code, for example, 137.191.332.82
  • Web browser version
  • Pages visited and the time of those visits
  • Operating system
  • Device or device type
  • Search terms used
  • The previous website address from which you reached us, including any search terms used

What we use the information for

The information will be used for statistical and reporting purposes and to improve the website.

Cookies

What are Cookies?

Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site.

What types of cookies do we use?

Strictly Necessary Cookies

This is the minimum set of cookies required for our site to function. You cannot opt out of storing them.

Functional Cookies

These cookies enable or improve non-essential functionality. Note that some features may not work correctly without these cookies, so we encourage you to consider consenting to their use.

Performance-Related Cookies

These cookies help us understand how visitors use our services, and improve the user experience. We would appreciate your consent to their use.

Marketing Cookies

These cookies help marketing agencies understand the kind of advertising you may not enjoy, and avoid presenting it to you.

Managing cookies on this website

When you first visit this website you are asked to set your preferences relating to cookies. You can change any of your preferences at an time on your cookie preferences screen