What personal data do we collect?
Clinical Architecture is the sole owner of information collected on the Website. We may collect information from you in several different places on our Website. We treat all collected information with complete confidentiality. At certain places on this Website, you may be requested to complete registration requirements in order to receive information about our products and services. We will ask for relevant contact information (such as name, job title, company address, telephone and email address). We will use this information to contact you regarding products and services for which you have expressed interest. We collect personal data about customers, users and industry contacts (data subjects) to enable us to conduct our business. Users are individuals (For example, health informaticians) that have licensed one or more of our software solutions or contracted for other services.
This Website collects cookies. (For a definition of cookies, please visit www.microsoft.com/info/cookies.htm)
Use of personal data
We use personal data to perform the following functions that are necessary for us to conduct our business:
- to perform the contracts we have signed with our customers, suppliers or partners
- to allow contract management, e.g. to address our invoices to our customers for payment
- to provide an account management and customer service capability
- to allow us to conduct informational and promotional activities
- to track the use of our website
Clinical Architecture acts as a Data Controller with respect to personal data we hold on data subjects.
How long do we keep data for?
Clinical Architecture will only hold personal data for as long as is necessary to fulfil the purposes for which it was collected, including any legal, accounting or reporting requirements.
The periods for which personal data is held after the end of customer and/or end user contract is 7 years for business auditing purposes. For industry contacts the details will be retained while we have a legitimate reason to do so.
How do we keep the data secure?
Clinical Architecture will maintain reasonable and appropriate technical and organisational security measures to protect personal data from unauthorized access, alteration, disclosure, loss or destruction.
Who do we share customer and user personal data with?
As part of a contract agreement to provide software solution and services, we may need to provide customer and user contact details to affiliates, partners, sub-contractors and associates in order for them to fulfil their obligations to the customer.
Clinical Architecture will not share your information for marketing purposes with other companies without consent excepting affiliated companies.
Legal basis for processing information
We collect and store data subjects personal data to:
- comply with the legal obligations of running the business
- allow us to fulfill contractual obligations
- for legitimate business reasons
- to provide communications about our products, services and event attendance to people who have provided Clinical Architecture with their contact information.
- to track the use of our web site
Your Rights including access rights
As a data subject, you have several rights. You can:
- access and obtain a copy of your data on request (known as a “data subject access request”);
- require the Company to change incorrect or incomplete data;
- request erasure of your personal information. This enables you to ask the Company to delete data;
- object to the processing of your data where the Company is relying on its legitimate interests as the legal ground for processing; and
- ask the Company to suspend the processing of your personal data for a period of time if data is inaccurate or there is a dispute about its accuracy or the reason for processing it.
Questions and Complaints
If you believe that Clinical Architecture has not complied with your data protection rights or have any other concern about our data processing, you have the right to make a complaint. Please contact firstname.lastname@example.org outlining your concern.
Alternatively, you can make a complaint to the Information Commissioner’s Office. Contact information can be found on their website https://ico.org.uk