Client’s Consent Letter for Personal Data
Protecting an individual’s personal data is of paramount importance to Nic’s Keto Clinics ltd and all personal data is handled in accordance with the General Data Protection Regulation (“GDPR”) EU 2016/679 (the “Law”).
All of the required steps have been taken in order to safeguard your personal data (that which we currently hold, or will hold in the future), containing sensitive data, including but not limited to, any health, medical, identity and contact details, in a manner which is consistent with our duty of professional confidence and the requirements of the General Data Protection Regulation (GDPR) concerning data protection.
We take reasonable security measures to protect your personal data storage and the records, electronic or not, will fall under the Controller of Processing – Nic’s Keto Clinics Ltd.
What data could be collected:
● Body measurements (weight, height, body composition)
● ID/passport number
● Contact details
● Physiological measurement, anthropometrics, biochemistry
● Current health status
● Medication, including over the counter and supplements
● Current food intake
● Psychological and behavioural readiness to change
● Social circumstances (marital status, work environment)
Ways to collect your data:
● Health, medical and lifestyle questionnaire
● One-on-one consultation
● Email, WhatsApp, Skype, telephone, online chat or social media
● Automated technologies such as cookie
We collect the above data via these methods to provide you with direct healthcare, and the legal basis of us, holding your personal data is for legitimate interest.
Why we use your personal data:
● To assess your health and nutritional status
● To monitor and evaluate progress
● To provide nutritional intervention
● To identify nutrition-related issues
● To construct individual meal plans and to advise clients about changes to diet
● Your contact information is essential so you can be contacted when necessary
How long do we keep your data:
When you have finished your nutritional therapy with Nic’s Keto Clinics ltd your records (including personal data) will be held for at least 20 years following your final consultation. In the case of minors, records will be kept for at least 7 years after they reach the age of majority. Following this period, your data will then be erased.
Will third parties see your data:
All information is strictly confidential and will not be disclosed with third parties without your written consent.
Exceptions to this apply for the following categories of third parties:
● Our professional associate/ members of our company, Biochemical/Functional testing companies and supplement companies, as part of providing you with direct healthcare.
● Your GP, healthcare providers, police, social services in any case when we believe your life is in danger on the lawful basis of vital interest.
● Anyone to whom we may transfer our rights and duties under any agreement we have with you.
● Any legal or crime prevention agencies and/or to satisfy any regulatory request if we have a duty to do so or if the law allows us to do so.
● On occasions, we may share a brief summary of your health problems in an anonymised form for the purpose to seek professional health opinion in order to provide you with better healthcare, or for the purpose of professional development. This may be at clinical supervision meetings, conferences, private and professional health online forums. In such cases your personal data and identity will be disclosed and will remain fully confidential.
● We may publish your anonymised full case history in medical journals, articles trade magazines or online professional sites.
Your legal rights:
● You have the right to a copy of the data (access personal data) and other basic rights in the field of data protection
● You have the right to a right to lodge a complaint with a Data Protection Authority (DPA)
● You have the right to withdraw consent at any time and to request your data to be erased.
● the right to be informed
● the right of access
● the right to rectification
● the right to erasure
● the right to restrict processing
● the right to data portability
● the right to object
● the right not to be subject