Information about Optimax and Website
Modern information and communication technologies play a fundamental role in the activities of an organisation like Optimax. We are based in the United Kingdom. Our principal activities are:
- Corrective Eye Treatment
- Health Care
Providing Visitors with Anonymous Access
You can access our website home page and browse our site without disclosing any personal data.
Providing Visitors with Secure Access
The MyOptimax area of the website provides secure access by using a username and password combination. A valid email address is required to activate this service. We protect the security of your information during transmission by using Secure Sockets Layer (SSL) software, which encrypts information you input. This secure area of the website allows us to provide services such as allowing patients to manage their aftercare appointments.
Credit Card Information
All credit/debit card information entered via our website is transmitted via SSL to our card payment service provider. Optimax does not store or have access to your full card details.
Automatic Collection of Information
In general it is Optimax's policy not to collect any information without specifically informing an individual first. Exceptions to this rule are explained below.
'Action tags' also known as web beacons or gif tags, are a web technology used to help track website usage information, such as how many times a specific page has been viewed. Action tags are not placed on your computer. They are invisible to you and any portion of our website or e-mail sent on our behalf, may contain cookies that are associated with action tags that our located on our website.
We automatically log supplied Personal Data by means such as programming or we link information automatically logged by such means with Personal Data about specific individuals. We do this for customer administration and marketing purposes.
There is no automatic collection of Personal Information. All information is supplied to us with explicit permission, either by the patient contacting us, or by us asking the patient for the information.
Data Collection and Purpose Specification
We collect the personal data that you may volunteer while using our services. With explicit permission only, we collect personal data about our visitors from other sources, such as public records or bodies, or private organisations - examples of this may include relevant medical and optical records from your General Practitioner or your usual optician. We do not knowingly collect or use personal data for any other purpose than the administration of your treatment, payments to us and for marketing analysis. If we wish to use your personal data for new purposes, we offer you the means to opt out of those new purposes by sending an email to [^enquiriesEmail]
or calling Customer Services on [^customerServicesOther]
The following personal data about you may be collected and held on our database. This will have either come directly from you or from other organisations (such as your General Practitioner or your usual optician, for example):
- Name and gender
- Address, telephone, fax and email
- Relevant and specific details about your medical situation (e.g. the details of your eye correction prescription or any relevant medical history)
- The name of your employer and your job title (for marketing analysis and credit scoring purposes)
- Relevant medical, racial and ethnic origin data applicable to you and possibly your family (certain conditions may run in families and make you unsuitable for treatment)
- Various lifestyle indicators (the newspaper you read, for example) for marketing purposes
- Identifiers assigned by public bodies (such as your National Insurance number).
If you are applying for credit terms, we may hold the following data about you:
- Financial identifiers and data
- Police/Justice data such as civil/criminal actions brought by or against you.
We do not knowingly collect personal data from children. Where we unknowingly collect personal data on children, we treat this data as we would with any other enquirer/patient data and apply adequate security measures to protect privacy.
Disclosure and Visitor Choice
We may disclose your personal data to companies within the Optimax Group. We will not disclose your personal data to other organisations outside the Optimax Group.
We do not give visitors to our website the option of using a secure transmission method to send us their Personal Data. We have implemented security policies, rules and technical measures to protect the Personal Data that we have under our control from:
- Unauthorised access
- Improper use or disclosure
- Unauthorised modification
- Unlawful destruction or accidental loss
All our employees and any Data Processors with access to (or an association with) the processing of personal data are obliged to respect the confidentiality of your personal data. We ensure that your personal data will not be disclosed to State Institutions and authorities except if required by law or other regulation. We may pass relevant medical and optical records to your General Practitioner or usual optician but only after permission has been sought.
Access Personal Data we may hold about You
You can ask us whether we are keeping personal data about you by emailing [^enquiriesEmail]
or calling Customer Services on [^offerNumber]
. On receipt of your written request, proof of your identity and a fee we will provide you with a readable copy of any Personal Data about you that we hold. The fee for retrieval of data from our computer system is £20. If you also require copies of medical files that are held on paper then the fee is £50. We allow you to challenge the personal data that we hold about you and, where appropriate, you may have the data rectified, amended or completed. We do not reserve the right to refuse to provide you with a copy of your personal data.
Please note that calls to and from the Contact Centre may be monitored or recorded.
. They may also be contacted by telephone on [^customerServicesOther]
or by emailing [^enquiriesEmail]
. All Data Subject Access requests must be received in writing. If you do not feel satisfied with the response you receive from Customer Services, concerns relating to data privacy should be addressed to Abdulla Alajmi, Data Protection Officer, [^headOfficeAddress]
. If you are still not satisfied with our response to your concern, you may wish to contact: