Privacy Policy

  1. INTRODUCTION
  • 1.1 During your visit to NUMA, we will gather personal and clinical information about you. Any information which you provide will be stored and processed in accordance with applicable data protection laws, including the UK GDPR (defined below). Detailed information about what information we collect about you and how we use that information is contained within our Privacy Policy, which can be found at our website or obtained at the clinic by speaking to a member of reception for a paper copy.
  1. WHO WE ARE
  • 2.1 NUMA Limited (“we”, “us” or “our”) operate the Hyperbaric Oxygen Clinic (“NUMA”), which is a private clinic offering hyperbaric oxygen treatment. The Clinic is based at 6 York Street, London, W1U 6QD.
  1. BACKGROUND.
  • 3.1 The purpose of this Privacy Notice is to explain how we will use any personal data that we collect about you when you contact us or use our services.
  • 3.2 We act as a data controller in respect of your data and are registered with the Information Commissioner’s Office under data protection registration number ZA828748.
  • 3.3 If you would like to contact us about any of the information contained within this Privacy Notice you can contact us at info@numaoxygen.co.uk or telephone on +44 (0)20 3823 1212.
  1. PERSONAL INFORMATION WE COLLECT ABOUT YOU AND HOW WE USE IT
  • 4.1 The table at the Annex to this Privacy Policy sets out the categories of personal information we collect about you and how we use that information. The table also lists the legal basis which we rely on to process the personal information.
  • 4.2 If you would like more information in respect of the lawful bases upon which we are processing your personal data, please contact us using the details provided at paragraph 3.4, above.
  1. SPECIAL CATEGORY DATA
  • 5.1 Some of the personal information you provide to us or which we collect about you, as part of using our services, in particular information relating to your health, will be special category personal data to which additional protections apply under data protection law.
  • 5.2 Generally, we process such special category personal information because it is necessary to provide the Service to you. We will not share this data with anyone other than in accordance with this privacy policy. For further detail, please see the Annex below.
  1. WHO WE SHARE YOUR DATA WITH
  • 6.1 We may disclose your personal data as set out in this privacy policy. We may also disclose personal information to relevant third parties when necessary to safeguard individuals, whether minors or adults, who may be vulnerable or at risk of harm, comply with legal requirements, protect the wellbeing of adults lacking decision-making capacity, notify relevant authorities of infectious disease and assist in the prevention of terrorism.
  • 6.2 If you have been referred to us by another medical or allied professional, we may disclose details of your treatment and clinical progress to them where appropriate. We will discuss any disclosure with you in advance. You can ask for some information not to be shared but this may result in the delivery of your care being less efficient.
  • 6.3 In order for us to provide our services, we may share your information with selected third parties including contract management service providers, clinical facilities, suppliers and sub-contractors.
  • 6.4 We may share certain of your information with analytics and search engine providers that assist us in the improvement and optimization of our site.
  • 6.5 We may share information about your treatment with us with your insurance company in line with the terms of the policy that you have in place with them.
  • 6.6 We may share your data if all or substantially all of our assets are acquired by a third party, in which case personal information held by it about you will be one of the transferred assets.
  1. YOUR RIGHTS
  • 7.1 Access to your information. You have the right to request a copy of the information that we hold about you (“Right of Access”). If you would like a copy of some, or all, of your personal information please contact us using the details set out above.
  • 7.2 Right of rectification. If your personal details change, or it comes to your attention that the information we hold about you is inaccurate in any way please let us know and we will make the appropriate corrections.
  • 7.3 Your other rights. In certain circumstances, you may also have the right to:
    • 7.3.1 request erasure of your personal data;
    • 7.3.2 request restriction of processing your personal data
    • 7.3.3 request transfer of your personal data; and
    • 7.3.4 withdraw your consent
    • 7.3.5 Please note that the above rights are not absolute, and we may be entitled to refuse requests, wholly or partly, where exceptions under the applicable law apply.
  • 7.4 Complaints. Whilst we would welcome the opportunity to resolve any concerns you have in relation to our handling of your personal data in the first instance, you can also lodge a complaint at any time to the Information Commissioner’s Office by post by Post at the following address: Wycliffe House, Water Lane, Wilmslow, SK9 5AF,  by telephone on the following number: +44 (0) 303 123 1113 or via their website at: https://ico.org.uk/concerns/.
  1. YOUR RIGHT TO OBJECT
  • 8.1 You have the right to object to our processing of your personal information where:
    • 8.1.1 we are using it for the purposes of direct marketing; or
    • 8.1.2 in certain circumstances, where our processing is carried out on the basis of our legitimate interests
  1. WHERE WE STORE YOUR PERSONAL INFORMATION
  • 9.1 Where we collect personal information from you, it may be necessary for us to transfer your personal information outside of the UK or the European Economic Area (“EEA”) to our service providers and business partners located outside the UK or the EEA.
  • 9.2 Where personal information is transferred to and stored in a country not determined by the European Commission as providing adequate levels of protection for personal information, we take steps to provide appropriate safeguards to protect your personal information, including entering into standard contractual clauses approved by the UK or the European Commission, completing a transfer risk assessment, and obliging recipients to protect your personal information.
  1. THE SECURITY OF YOUR DATA
  • 10.1 When medical records are shared with third parties electronically, this is done securely such as through an encrypted file sharing service.
  • 10.2 Unfortunately, the transmission of information via email and the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
  1. OUR USE OF COOKIES
  • 11.1 Our website uses cookies to distinguish you from other users of our website. A “cookie” is a small amount of data which often includes a unique identifier that is sent to your computer, tablet or mobile phone (referred to here as a “device”) browser from a website’s computer and is stored on your device’s hard drive, mobile or other device.
  • 11.2 There are different types of cookies which are used to do different things such as allowing you to navigate between pages on a website efficiently, remembering your preferences on certain web pages, or improving your overall experience.
  • 11.3 Most web browsers automatically accept cookies, but you can disable this function by changing your browser settings if you so wish. To find out more about cookies including what they are, how to control them or how to delete them, please visit www.aboutcookies.org.
  • 11.4 We ask for your consent to place cookies on your device, except where these are essential for us to provide you with a service that you have requested.
  1. THIRD PARTY WEBSITES
  • 12.1 Our site may, from time to time, contain links to and from the websites of our partner networks and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites
  1. DATA RETENTION
  • 13.1 We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. In general, health records of patients are kept for 8 years after conclusion of treatment (children’s records are to be retained until they are 21 years old). Other specialised categories of data are retained according to the NHS retention schedule.
  1. CHANGES TO OUR PRIVACY POLICY   
  • 14.1 We regularly review our Privacy Policy and will update this page when necessary. This Privacy Notice was last reviewed on 01.08.2024.

Acknowledgement of Notice of Privacy Practices 

“I hereby acknowledge that I have read and understood this clinic’s NOTICE OF PRIVACY PRACTICES. I understand that if I have questions or complaints regarding my privacy rights that I may contact the person listed above. I further understand that the clinic will offer me updates to this NOTICE OF PRIVACY PRACTICES should it be amended, modified, or changed in any way.”