Welcome to the HeLP-Diabetes website www.HeLP-Diabetes.org.uk (the "Website").
The Website is owned and controlled by University College London , UCL Research Department of Primary Care & Population Health, Upper 3rd Floor, Royal Free Hospital, Rowland Hill Street, London NW3 2PF ("UCL"), who is data controller in respect of all personal information collected from users of the Website (if any) for the purposes of the Data Protection Act 1998.
1. Your Consent
If at any time you wish to withdraw your consent or unsubscribe from the Website, you can contact us either via the Website or using the contact details in paragraph 11. If you have agreed to take part in research carried out through the Website, anonymised data from your account may be retained.
2. What personal information do we collect?
If you choose to register to use the Website we will collect the following types of personal data about you:
- email address;
- Date of birth;
- Highest educational qualification;
- GP Practice
After registration to use the website, you can choose to use the website to record the following sensitive personal data:
- Ethnic Group;
- Whether you need to take medicine to control your diabetes;
- blood glucose levels;
- blood pressure readings;
- blood test and other results;
- a list of your medication;
- your care plan;
- medical appointments; and
- any other sensitive personal data which you may choose to upload and store on the Website.
3. How do we use your personal information?
The data you upload to the Website can be used by you to view historical records and see trends over time so you can understand your condition better and improve your health. It can also be used to set personal reminders that you can turn on or off through the Website. Data which you upload is not shared with any medical professionals and it is your confidential personal record. Your GP, nurse or any other medical professional will not have access to this information unless you give them a copy.
We may use the information that you provide or that is collected by us (provided that is not part of your confidential personal record or GP medical record) in the following ways:
- to contact you with Website news and updates;
- to keep you informed of our activities and the services provided by us using any of the following methods:
- telephone (including automated calls);
- SMS text messages and other electronic messages, such as picture messaging;
- post; and/or
- to allow us to understand who has visited which pages, to determine how frequently particular pages are visited and to determine the most popular areas of our Website.
We may also collect information from our Website by using cookies (see below).
4. Our obligations
We fully comply with all relevant data protection laws, including the Data Protection Act 1998, and protect the security of your information with Secure Sockets Layer (SSL) encryption. We maintain electronic and procedural safeguards in the protection of the personal information that we store. All confidential data and all personal data provided to us as a result of this Website will be handled in accordance with our strict standards of confidentiality. Our legal and professional obligations are guided by the following:
The Caldicott Principles;
Data Protection Act 1998;
Human Rights Act 1998;
Common Law duty of Confidentiality;
NHS Operating Framework 2011/12; and
The NHS Confidentiality Code of Practice.
5. Your obligations
You must take all reasonable precautions to keep your information safe and prevent fraudulent use of your account and protect your confidential information. Your obligations include but are not limited to:
- never writing down or otherwise recording your security details in a way that can be understood by someone else;
- not choosing security details that may be easy to guess;
- taking care to ensure that no one hears or sees your security details when you log in;
- keep your security details unique to the Website;
- not disclosing your security details to anyone, including us;
- changing your security details immediately and telling us as soon as possible if you know or suspect that someone else knows your security details;
- once you have logged in to HeLP-Diabetes do not leave your device unattended or let anyone else use your device;
- logging out of HeLP-Diabetes when you have finished using the Website;
- installing and maintaining appropriate security software on any personal computing devices used to access HeLP-Diabetes; and
- keeping operating systems and browsers on personal computing devices up to date.
In the event that a failure by you to comply with any of the foregoing obligations leads to a breach of security, we cannot be held accountable for the loss of any personal data, confidential information or otherwise.
6. What are "cookies" and how do we use them?
7. What information do parties other than HeLP-Diabetes collect?
8. With whom do we share your information and for what purpose?
We will only pass on your information to third parties in the following situations:
- If we choose to share aggregate anonymised information with business contacts and partners;
- Where legally permitted or required;
- Where disclosure is made with your consent.
You have the right to see the personal data (as defined in the Data Protection Act 1998) that we keep about you (if any), on receipt of a written request, verification of your identity, and payment of a fee of £10. If you are concerned that any information we hold on you is incorrect please contact us via the details in paragraph 11 below.
11. Contact us
If you have queries you can write to us at:
UCL Research Department of Primary Care & Population Health
Upper 3rd Floor, Royal Free Hospital, Rowland Hill Street
London NW3 2PF
© Copyright HeLP-Diabetes - all rights reserved. Reproduction of this Website, in whole or in part, in any form or medium without express written permission from HeLP-Diabetes is prohibited.