Introduction
Synergy Clinics is committed to ensuring the privacy of personal information by users of our website and in our practice. This notice clarifies how we use or process your personal information and in particular any special personal information that we collect through your use of our website or information provided by you or on your behalf in the course of interactions with you or those involved in your healthcare either online or in our practice.
Any references to “we”, “us” or “our” in this notice shall be to Synergy Clinics; and references to “user”, “you” or “your” in this notice shall be to any person with whom we interact and whose information we may receive and process. This would include but not be limited to our patients, employees, suppliers, hospitals, ambulance services, referring healthcare practitioners, medical aids, statutory institutions and information technology support companies and auditors.
Who we are
We are a registered health facility running integrated specialised care services located in Kisumu-Tom Mboya Estate (Main Campus), Kisumu-RIAT (Kisumu Specialist Hospital) and Nairobi (Parklands). Our website is administered by ourselves. Our registered office is Dakar Street Off Nyerere road,Tom Mboya Estate near Pinecone Hotel,Kisumu, Kenya.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
What personal information we collect about you
Personal data or personal information means any information relating to a natural person which identifies the person or enables the identification of that person.
We collect information about you when you voluntarily register with us to receive company related alerts, complete our online information request form, and complete any surveys or feedback forms. We use cookies to collect information about your use of our website (technical data). For more information about how we use cookies, please see our cookie policy below in section 11.
We may collect, use, store and transfer different kinds of personal data about you including your first name, last name, title, gender, occupation, address, e-mail address, telephone numbers, feedback and survey responses, selected communication preferences, which you provide voluntarily.
We may also collect, use and share aggregated data such as statistical or demographic data for any purpose. Aggregated data may be derived from your personal information, but is not considered personal information in law as this information does not, directly or indirectly, reveal your identity.
How we collect your personal information
We use different methods to collect personal information from and about you, including through:
Direct interactions: You may provide certain personal information (such as your name, address, telephone and e-mail address) by filling in forms or by corresponding with us by post, phone, text message, e-mail or in person at one of our branches. This includes personal data you provide when you register for radiological services at our branches, apply for a position, e-mail alerts on this website; request information to be sent to you; complete and submit a survey; transact with us or provide feedback to us.
Automated technologies or interactions: As you interact with our website, we may automatically collect technical data about your equipment, browsing actions and patterns. We collect this by using cookies. Please see our cookie policy in section 11 below for further details. Through analytics, we use anonymised aggregated data such as statistical or demographic data.
Third parties: We may receive personal data about you from hospitals, healthcare providers, medical aids involved in your healthcare
Comments
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
Media
Suggested text: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Cookies
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Who we share your data with
We may have to share your personal data with the persons set out below for the purposes set out in above. We require all such persons to respect the security of your personal information and to treat it in accordance with applicable law.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
Subject to certain exceptions, you have rights under relevant data protection law in relation to our use of your personal information, including to:
request access to your personal information held by us, together with an explanation of the categories of personal information being processed, the purposes of such processing, and the categories of third parties to whom the personal information may be disclosed;
request a correction of your personal information if it is inaccurate or incomplete;
request restriction of processing or object to certain uses of your personal information (which includes direct marketing, and processing based on legitimate interests or the performance of a task in the public interest/exercise of official authority (including profiling) and processing for purposes of scientific or historical research and statistics) on grounds relating to your particular situation;
request the erasure of your personal information, or restrict its use, in certain circumstances (for example you can request that we erase your personal information where the personal information is no longer necessary for the purpose for which it was collected (unless certain exceptions apply); and
withdraw any consents you have provided in respect of our use of your personal information.
If you have any questions about these rights, or you would like to exercise any of them, please contact our information officer by sending an e-mail to info.synergyclinics@gmail.com.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal information (or to exercise any of your other rights). This is a security measure to ensure that personal information is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We endeavour to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Where your data is sent
Visitor comments may be checked through an automated spam detection service.
How we secure your personal Information
Your personal information shall be treated as confidential and collected, processed and stored by Synergy Clinics and our service providers in a manner that ensures appropriate security thereof, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures, which include:
- identity and access management;
- infrastructure and operations security;
- business continuity planning;
- disaster recovery planning; and
- security awareness.
We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.
While Synergy Clinics will use all reasonable endeavours to ensure the integrity, security and confidentiality of all personal information submitted and/or obtained from a user, it will not be held liable under any circumstances if such information is compromised, disseminated or otherwise disclosed through conduct outside the control of Synergy Clinics such as hacking, infection by “viruses”, “Trojan Horses” or any other computer programming routines or software that are intended to damage, detrimentally interfere with, surreptitiously intercept or expropriate any system, data or personal information.