Chypons Privacy Policy

Our Privacy Policy; we value your privacy
Chypons Residential Home respects the privacy of our website users and is committed to protecting our customer's privacy when using www.chyponshome.co.uk and our services.

Please take the time to read this notice which explains what information we collect about you, how we use it, and your rights. Chypons Residential Home (In this privacy notice, “Chypons Residential Home”, “we” or “us”) is the data controller of the personal data collected via or in connection with Chypons Residential Home and any associated App (the “Site”).

This privacy notice applies to anyone who interacts with us about our products and services (‘you’, ‘your’), in any way (for example, by email, through our website, by phone). We will give you further privacy information if necessary for specific contact methods or in relation to specific products or services.

This privacy notice applies to you if you ask us about, buy or use our services. It describes how we handle your information, regardless of the way you contact us (for example, by email, through our website, by phone, etc). We will provide you with further information or notices if necessary, depending on the way we interact with each other.

We are committed to protecting your privacy when dealing with your personal information. This privacy notice provides details about the information we collect about you, how we use and protect it. It also provides information about your rights.

If you have any questions about how we handle your information, please contact us at our email address: chypons@btconnect.com


How we collect personal information
We collect personal information from you and from third parties (anyone acting on your behalf, for example, family members, health-care providers and so on). Please see below for more information.

Where you provide us with information about other people, you must make sure that they have seen a copy of this privacy notice and are comfortable with you giving us their information.

We collect personal information from you:

  • through your contact with us, including by phone (we may record or monitor phone calls to make sure we are keeping to legal rules, codes of practice and internal policies, and for quality assurance purposes), by email, through our websites, through our apps, by post, by filling in application or other forms.
  • We also collect information from other people and organisations.


For all our customers, we may collect information from:

  • a family member, or someone else acting on your behalf;
  • doctors, other clinicians and health-care professionals, hospitals, clinics and other health-care providers;
  • any service providers who work with us in relation to your product or service, if we don’t provide it to you direct, such as providing you with apps, medical treatment, dental treatment or health assessments;
  • fraud-detection and credit-reference agencies; and sources which are available to the public, such as the edited electoral register or social media.


If we provide you with health-care, dental or care-home services, we may collect information from:

  • those paying for the products or services we provide to you.


What personal data do we collect about you?
We collect personal data from you when you provide it to us directly and through your use of the Site. This information may include:

Our servers automatically log some basic information sent by your browser. This can include: the date and time of your request; your web request; IP address (Internet Protocol); browser type; etc.

Information you provide to us when you use our Site. Google, whose analytics we use, does collect information about your visit.

Records of your interactions with us (e.g. if you contact our customer service team, interact with us on social media). If you send an email to us to request information about Chypons or some aspect of our website and you add your contact details (telephone number, email address, postal address) then we store this information for the purpose of answering your enquiry;

Information collected automatically, using cookies and other tracking technologies (e.g. which pages you viewed and whether you clicked on a link). We may also collect information about the device you use to access our Site; and Other information necessary to provide the Site to you. Please see Cookie Policy below for details.

Categories of personal information

We process two categories of personal information about you:

  • standard personal information (for example, information we use to contact you, identify you or manage our relationship with you); and
  • special categories of information (for example, health information, information about your race, ethnic origin and religion that allows us to tailor your care, and information about crime in connection with checks against fraud or anti-money-laundering registers).


For more information about these categories of information, see below.

Standard personal information includes:

  • contact information, such as your name, address, email address and phone numbers;
  • the country you live in, your age, your date of birth and national identifiers (such as your National Insurance number or passport number);
  • details of any contact we have had with you, such as any complaints or incidents;
  • financial details, such as details about your payments and your bank details;
  • the results of any credit or any anti-fraud checks we have made on you;
  • information about how you use our products and services;



Special category information includes:

  • information about your physical or mental health, including genetic information or biometric information (we may get this information from application forms you have filled in, from notes and reports about your health and any treatment and care you have received or need, or it may be recorded in details of contact we have had with you such as information about complaints or incidents and records of medical services you have received);
  • information about your race, ethnic origin and religion (we may get this information from your medical or care-home preferences to allow us to provide care that is tailored to your needs); and
  • information about any criminal convictions and offences (we may get this information when carrying out anti-fraud or anti-money-laundering checks, or other background screening activity.


What do we use your personal data for?
Depending on how you use our Site, your interactions with us, and the permissions you give us, the purposes for which we use your personal data include:

To improve and maintain the Site, and monitor its usage.

For security purposes, to investigate fraud and where necessary to protect ourselves and third parties.

To comply with our legal and regulatory obligations.

We rely on the following legal basis, under data protection law, to process your personal data:

Because the processing is necessary to perform a contract with you, or take steps prior to entering into a contract with you (e.g. where you have made a purchase with us, we use your personal data to process the payment and fulfil your order).

Because we have obtained your consent (e.g. where you contact us with a query).

Because we have a legitimate interest in processing the data.



For more details please see below:

We process your personal information for the purposes set out in this privacy notice. We have also set out some legal reasons why we may process your personal information (these depend on what category of personal information we are processing). We normally process standard personal information if this is necessary to provide the services set out in a contract, it is in our or a third party’s legitimate interests or it is required or allowed by any law that applies. Please see below for more information about this and the reasons why we may need to process special category information.

By law, we must have a lawful reason for processing your personal information. We process standard personal information about you if this is:

  • necessary to provide the services set out in a contract − if we have a contract with you, we will process your personal information in order to fulfil that contract (that is, to provide you and your dependants with our products and services);
  • in our or a third party’s legitimate interests − details of those legitimate interests are set out in more detail below;
  • required or allowed by law.



We process special category information about you because:

  • it is necessary for the purposes of preventive medicine, to provide health or social care or treatment, or to manage health-care or social-care systems (including to monitor whether we are meeting expectations relating to our performance);
  • it is necessary to establish, make or defend legal claims;
  • it is necessary for the purposes of preventing or detecting an unlawful act in circumstances where we must carry out checks without your permission so as not to affect the outcome of those checks (for example, anti-fraud and anti-money-laundering checks or to check other unlawful behaviour, or carry out investigations with other insurers and third parties for the purpose of detecting fraud);
  • it is necessary for a purpose designed to protect the public against dishonesty, malpractice or other seriously improper behaviour (for example, investigations in response to a safeguarding concern, a member's complaint or a regulator (such as the Care Quality Commission or the General Medical Council) telling us about an issue);
  • it is in the public interest, in line with any laws that apply;
  • it is information that you have made public; or
  • we have your permission. As is best practice, we will only ask you for permission to process your personal information if there is no other legal reason to process it. If we need to ask for your permission, we will make it clear that this is what we are asking for, and ask you to confirm your choice to give us that permission. If we cannot provide a product or service without your permission (for example, we can’t manage and run a health trust without health information), we will make this clear when we ask for your permission. If you later withdraw your permission, we will no longer be able to provide you with a service that relies on having your permission.


Legitimate Interest
We process your personal information for a number of legitimate interests, including managing all aspects of our relationship with you, to help us improve our services and products, and in order to exercise our rights. More detailed information about our legitimate interests is set out below.

Legitimate interest is one of the legal reasons why we may process your personal information. Taking into account your interests, rights and freedoms, legitimate interests which allow us to process your personal information include:

  • to manage our relationship with you, our business and third parties who provide products or services for us (for example, to check that you have received a service that you’re covered for, to validate invoices and so on);
  • to provide health-care services on behalf of a third party;
  • to keep our records up to date;
  • for statistical research and analysis so that we can monitor and improve products, services, websites and apps, or develop new ones;
  • to monitor how well we are meeting our performance expectations;
  • to enforce or apply our website terms of use, our policy terms and conditions or other contracts, or to protect our (or our customers’ or other people’s) rights, property or safety;
  • to exercise our rights, to defend ourselves from claims and to keep to laws and regulations that apply to us and the third parties we work with.


Who do we share this personal data with?
We will only share information about service users with others if the service user has given their permission, or where the law requires us to.

Our managers are responsible for ensuring that, apart from staff and the service user, access to confidential information is restricted to allow only those people for whom each service user has given permission.


The only circumstance where a service user’s refusal to access information can be overruled would be where the law requires such access.

This would include instances where the managers are made aware that a criminal act may have been committed.


We share customers’ personal data with third parties in the following circumstances:

  • if we sell or buy any business or assets, the potential buyer or seller of that business or those assets; and
  • a third party who takes over any or all of Chypons assets (in which case personal information we hold about our customers or visitors to the website may be one of the assets the third party takes over)


With our professional and legal advisors.

With third parties engaged in fraud prevention and detection.

With law enforcement or other governmental authorities, e.g. to report a fraud or in response to a lawful request.

Otherwise where we have your consent or are otherwise legally permitted to do so.

If we share your personal information, we will make sure appropriate protection is in place to protect your personal information in line with data-protection laws.


Storage and Retention
We will ensure that confidential information is held securely on your behalf and that you can access it at any reasonable time.

For our website, our servers are based the UK. However, your personal data may be processed in countries outside of Europe, including in countries where you may have fewer legal rights in respect of your data than you do under local law.

We will keep your personal data for as long as we need it for the purposes set out above, and so this period will vary depending on your interactions with us.

We may also keep a record of correspondence with you (for example if you have made a complaint about our service) for as long as is necessary to protect us from a legal claim. Where we no longer have a need to keep your information, we will delete it.


Security
Whilst we do everything within our power to ensure that personal data is protected at all times from our Site, we cannot guarantee the security and integrity of the information that has been transmitted to our Site.

Records held on computer (or other electronic storage and retrieval system) should be protected by an effective back up and retrieval system.

The managers should ensure that any back up system maintains the security and integrity of the originals and additionally ensures that these copies are erased or destroyed when no longer required.

Our managers may consider the use of password protection for files, folders or drives on the computer as a means of preventing unauthorised access to information.


Will this Privacy Policy change in the future?
If we decide to change this Privacy Policy, we will publish the updated Privacy Policy on our site so that you are always aware of what personal information we collect, how we use it and under what circumstances we disclose it. Any updated Privacy Policy will take effect as soon as it is posted on our site.

This Policy was last updated in July 2018.


Your rights
You have certain rights in respect of your personal data, including the right to access, portability, correct, and request the erasure of your personal data.

You also have the right to object to your personal data being used for certain purposes, including to send you marketing.

We will comply with any requests to exercise your rights in accordance with applicable law. Please be aware, however, that there are a number of limitations to these rights, and there may be circumstances where we are not able to comply with your request.

To make any requests regarding your personal data, or if you have any questions or concerns regarding your personal data, you should contact us using the details below. You are also entitled to contact your local supervisory authority for data protection.

You have the following rights (certain exceptions apply):

  • Right of access: the right to make a written request for details of your personal information and a copy of that personal information
  • Right to data portability: the right to ask for the personal information you have made available to us to be transferred to you or a third party in machine-readable formats
  • Right to rectification: the right to have inaccurate information recorded about you corrected or removed
  • Right to erasure, also known as the 'right to be forgotten': the right to have certain personal information about you erased
  • Right to restriction of processing: the right to request that your personal information is only used for restricted purposes
  • Right to object: the right to object to processing of your personal information in cases where our processing is based on the performance of a task carried out in the public interest or we have let you know the processing is necessary for our or a third party’s legitimate interests. You can object to our use of your information for profiling purposes where it is in relation to direct marketing
  • Right to withdraw consent: the right to withdraw any consent you have previously given us to handle your personal information. If you withdraw your consent, this will not affect the lawfulness of our use of your personal information prior to the withdrawal of your consent and we will let you know if we will no longer be able to provide you your chosen service
  • Please note: Other than your right to object to the use of your data for direct marketing (and profiling to the extent used for the purposes of direct marketing), your rights are not absolute: they do not always apply in all cases and we will let you know in our correspondence with you how we will be able to comply with your request.


If you make a request, we will ask you to confirm your identity if we need to, and to provide information that helps us to understand your request better. If we do not meet your request, we will explain why.


Contact Us

If you have any queries, questions, comments, complaints or suggestions in relation to our Privacy Policy or any other concerns about the way in which we process information about you, please contact us at;

Telephone: 01736 362492
Email: chypons@btconnect.com

You also have a right to make a complaint to the UK privacy supervisory authority.

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire, United Kingdom
SK9 5AF
Phone: 0303 123 1113 (local rate) or 01625 545 745 (national rate)


Cookies
Our Sites uses cookies and similar technologies to provide certain functionality to the Site and to understand and measure its performance. Please see our Cookie Policy below for further information about the cookies we use and how to amend your cookie settings.

What are cookies?

A "cookie" is a simple text file that is stored on your computer, tablet, mobile phone or other mobile device when you visit a website using a browser (e.g. Google Chrome, Internet Explorer, Safari or Firefox).

A cookie is not a program and it will not do anything actively on your computer. A cookie will not identify you personally.



There are different types of cookies:

Session cookies are deleted shortly after you close down your browser

Persistent cookies stay on your device until you delete them from your cache or they expire. These cookies are to help your browsing experience by enabling us to remember your preferences when you return to visit our website. This allows us to treat you as an individual.

First party cookies are ones set by our website

Third party cookies can be set by Google, YouTube, AddThis, Amazon, etc.



First Party Cookies


DYNSRV

This cookie is believed to be used for load balancing to manage server traffic demand.

The main purpose of this cookie is: Strictly Necessary


cookies_accepted

This cookie stores your consent if you have accepted the cookie policy of this Site.


ASPSESSIONIDxxxxxxxx

The first time you request an .asp file within a given application, ASP generates a SessionID. A number produced by a complex algorithm, the SessionID uniquely identifies your session. At the beginning of a new session, the server stores the Session ID in your Web browser as a cookie.

The SessionID cookie is similar to a locker key in that, as the user interacts with an application during a session, ASP can store information for the user in a "locker" on the server. The user's SessionID cookie, transmitted in the HTTP request header, enables access to this information in the way that a locker key enables access to a locker's contents. Each time that ASP receives a request for a page, it checks the HTTP request header for a SessionID cookie.

After storing the SessionID cookie in the user's browser, ASP reuses the same cookie to track the session, even if the user requests another .asp file, or requests an .asp file running in other application. Likewise, if the user deliberately abandons or lets the session timeout, and then proceeds to request another .asp file, ASP begins a new session using the same cookie. The only time a user receives a new SessionID cookie is when the server administrator restarts the server, thus clearing the SessionID settings stored in memory, or the user restarts the Web browser.

By reusing the SessionID cookie, ASP minimizes the number of cookies sent to the browser.



Third Party Cookies


_ga

This cookie name is asssociated with Google Universal Analytics - which is a significant update to Google's more commonly used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the sites analytics reports. By default it is set to expire after 2 years, although this is customisable by website owners.

The main purpose of this cookie is: Performance


_gid

This cookie name is asssociated with Google Universal Analytics. It appears to store and update a unique value for each page visited.

The main purpose of this cookie is: Performance


How we use cookies

Our cookies help to give you a better online experience as you navigate our website and use our searches. They also track website performance so we can analyse page traffic. We only use this information for statistical analysis purposes.

If you choose to delete cookies we will not remember things about your preferences and you will be treated as a first-time visitor every time you use our website.

You have the choice to accept or decline cookies. Most web browsers will automatically accept cookies, but you can usually change your browser setting to decline cookies if you prefer. This may prevent you from getting the best experience from the website.

Session id cookies stored on our server for advertisers who log in to their personal account with us in order to add late availability, special offers or use other member services.


Third party cookies

A browser cookie is only tracked within the specific browser.

We use use Google Analytics to analyse the use of our website and how it is accessed. Google Analytics generates statistical and other information about our website use by means of cookies informing us which pages are viewed most, which gives us valuable information to help improve our website.
Links to third party websites
Our website contains links to other websites of interest. When you use these links to leave our site, please note that we do not have any control over those other websites and cannot be held responsible for the protection and privacy of any information which you provide whilst visiting those sites.

Third party websites are not governed by this privacy statement. You should check the privacy statement of any linked websites you choose to visit.