We are committed to protecting your data. This privacy policy will inform you as to how we look after your data when you use our platform at https://ourisdigital.com/privacy or via the Ouris application ("Platform") (regardless of where you visit it from) and tell you about your privacy rights and how the law protects you.
1. WHAT THIS POLICY COVERS
This privacy policy aims to give you information on how we collect and process your data through your use of our Platform.
Ouris Digital – Web Application
Ouris Digital – APPs
2. WHAT DATA WE COLLECT ABOUT YOU
This privacy policy aims to give you information on how we collect and process your data through your use of our Platform.
Personal Data - Name, Date of Birth, Address, E-mail, Telephone
If you are giving information about another person, you are confirming that you are authorised to do For children's and dependants Registrations – The parent or legal guardians' details collected as Personal data.
Special Data – We collect your Gender and Ethnicity data.
We collect only the data relevant to conduct our legal contract.
Using our APP and Web Application we process information about your health.
These details are shared between you and your healthcare provider. Your healthcare provider could share information about you only with your consent and acceptance in the APP. You can unlink your connections with the provider anytime from the APP.
We send all your private consultations to your registered health care professional with your consent
We hold details of your conversations with us for support, technical calls, Chats, Messages, and` Visit notes.
If you use a third-party device or App to connect to Ouris Digital, we ask your permission to receive health data from third-party devices.
For Private patients, if you are making a payment to a healthcare professional using your debit or credit card using our platform, we do not hold any card details and they are processed by a third-party payment provider.
If you make a payment on the app, your credit and debit card details are processed by a third-party provider. We do not store any credit or debit card information and we only keep the details of the transaction securely for your reference.
We use cookies saved on your phone, tablet, or computer when you visit our site's external pages only. They collect information about how you browse our website pages. We do not use cookies on your personal health and medical Information.
Our web and Mobile APPs require the below permissions for APP functions .
Our web and APP solutions ask you to update your location, this is to help you find the nearest services from your current location. You can switch these services On and Off at any time. This service is also used to validate your health and well-being diary, Appointments times depending on your time zone to provide you with an entry appropriate to the time zone.
Camera –The use of a camera is to take pictures, videos and to conduct a video consultation with your health care professional.
Microphone – To conduct a Video Consultation and to record audio.
Bluetooth – – To sync with blue tooth devices to obtain readings – Example – Blood pressure, pulse oximeter.
You can disable or enable them from Phone settings
3. WHAT WE USE YOUR DATA FOR
This is how we use your data and legal reasons for it
We need your details for your registration with our product, to enter a contract to deliver services.
The health data and health information provided by you and your health care provider are shared between both with consent. We allow your healthcare professional to share clinical information, treatments, Medication details, Appointments, and health parameter details and provide health advice on your condition using online and Video Consultation tools with you and with other health and care professionals involved in your care. (GPs, Hospitals, Community Care, Therapist, Pharmacist)
The information is about
We use your feedback to improve our Health information platform. We collect unidentified health information from health diary entries such as the number of appointments, chat numbers, Online transactions, Blood Pressure entry, Weight, BMI, and Mood. This data is collected only to analyze and measure the benefits of the APP in risk reduction. We do not store any identifiable data in the readings.
We collect data from devices when you have an outage using our product to find out the reasons behind the outage.
We send you notifications and text messages about your Appointments and Health promotion messages to assist and remind you about your appointments. The notifications and text Messages may come from Ouris or your Health care Professional Organisation using the Ouris Digital Platform.
We may contact you with marketing messages, product updates, surveys, and information on our product. You can opt-in or out by going to settings, privacy controls of your APP, and your account settings when using a Web application.
We use your health information for Training, Safety, Regulatory, and Compliance Purposes.
This means that :
4. HOW WE STORE AND MOVE YOUR DATA
Your data are stored in our secured servers.
Your Personal data
Your Medical and Health Data (Consultations, Appointments, Chats, Messages, and all about your health)
We do not hold any information locally in your devices (Mobile Devices)
We are committed to keeping your personal and Health information you provide us secure and we will take reasonable precautions to protect your personal information from loss, misuse, or alteration.
We have implemented information security policies, rules, and technical measures to protect the personal information that we have under our control from:
All our employees and data processors (i.e., those who process your personal information on our behalf, for the purposes listed above), who have access to, and are associated with the processing of personal information, are obliged to respect the confidentiality of the personal information.
You are responsible for keeping your password and/or authentication method confidential. Please do not share it with anyone.
For making payments to your private practice appointments and for Ouris, we do not store any of your credit card details and they are processed by a third-party provider. They follow strict industry data security standards. These are known as Level 1 Payment Card Industry (PCI) data security standards.
Your Data is stored in secure cloud services with the highest standards in the industry complying with Data Regulations.
General User's data are shared between the users and the Organisations by mutual consent for providing a service. Healthcare providers sharing information about a patient with other healthcare Organisations are not controlled by Ouris. General users are to provide consent with linked organizations for data sharing.
When healthcare providers register for the Ouris community, for operational purposes Ouris collects the following data and are displayed in the public domain after verification of the profile. Anyone visiting the website could view the verified information in the Ouris portal.
Healthcare providers can withdraw consent for display and able to switch off from their account settings. Ouris do not display general end users' details in the public domain in its Portal. Feedback obtained from General users and Organisations is placed on the website.
We share your data with third parties to provide analytics on the usage of the solution example to Google Analytics to understand your usage across ouris solution.
We use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative's ("NAI") educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
We may use your health data to protect the public.
Your data could be vital to help research, monitor, track, and manage public health emergencies, like pandemics.
In a public health emergency, your information may be shared in a way that is appropriate and lawful with organisations such as:
Local authorities
We will limit the use or sharing of data to the period of the emergency and will only share data to the extent necessary.
We also collect, use, and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data could be derived from your data but is not considered personal data in law as this data will not directly or indirectly reveal your identity.
What Additional Data do we collect?
We collect the listed data in paragraph (2) for registered Ouris digital users.
These records are patient information records received from your GP and NHS records. These are viewed only by authorised staff involved in your direct health care. If you do not wish to share you can opt own by contacting your GP or NHS Organisation or remove the link from your linked practices and to fill an opt out form at your GP practice.
We may keep or share information about you if we need to :
5. HOW LONG WE KEEP YOUR DATA
We will only retain your personal data in line with the countries we supply Ouris products.
In the UK Electronic Health data guidelines, for as long as reasonably necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation with respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting, or other requirements.
In India, we are governed by the below:
the Indian Contract Act, of 1872,
the (Indian) Information Technology Act, 2000, and
the rules, regulations, guidelines, and clarifications framed there under, including the (Indian) Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Information) Rules, 2011 (the "SPI Rules"), and the (Indian) Information Technology (Intermediaries Guidelines) Rules, 2011 (the "IG Rules")
6. Your Information and How long we keep it (its 'retention period')
Health care professionals – Access to the solution will be blocked after nonpayment of subscriptions and hard deleted after 60 days of non-payment. Which cannot be retrievable.
Patients and General users - When the account is unused for over 60 days, the account will be blocked, and they are archived for 12 months if unused they are deleted permanently after an internal decision. Deletion of data requests is completed within 30 days of Request.
Communications with support teams, including phone calls, emails, and live chats are retained for as long as required for Ouris legal use.
You are in control of your personal information. Under data protection law, you have the right to:
To do any of these things, please contact us by addressing your email to :
Data Protection Officer to
enquiries@ourisdigital.com
We will ask you for proof of identity. Data protection laws give us one month to get back to you.
7. THIRD PARTY LINKS
This website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.
8. CHANGES TO THIS PRIVACY POLICY
We may make changes to this privacy policy from time to time.
We may notify you by e-mail of any significant changes. However, we encourage you to review the privacy policy on our website periodically to be informed of how we use your personal information.
If you do not agree to the changes, then you can stop using our services at any time.
Last updated July 2023 V1.6