Egress Head Office is in Warwickshire, England. We are registered as Egress Limited in England (Companies House registration number 05967014) and we are registered with the Information Commissioner's Office under registration number ZA231354.
We have an appointed Data Protection Officer to facilitate any data privacy related queries.
Their contact information is as follows:
Shelley Hawley
Data Protection Officer
Egress Limited
Unit 5, Athena Court, Athena Drive, Tachbrook Park, Warwick CV34 6RT
Telephone; 01608 810015
E-mail: contact@egressgroup.co.uk
If you are concerned about an alleged breach of privacy law or any other regulation by us, please contact our DPO who will ensure that your complaint is investigated.
If you are not satisfied with our handling of your queries or complaints on data protection, you can contact the Information Commissioner's Office via this link Make a complaint | ICO
The data we collect and process
Client data:
We collect personal information about our clients and customers to provide them with Data Services as well as related consultancy services for healthcare organisations as well as private and public sector organisations.
We will hold the following information about clients:
How is your personal data collected?
You may give us your Identity, Contact and Financial Data by filling in forms or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you:
When and how we share information with others
Your information may be shared with:
We do not sell personal information to anyone and only share it with third parties who are facilitating the delivery of our services and communications.
Patient, healthcare, private and public sector organisation data
We process patient and healthcare data provided to us by other Data Controllers such as NHS Trusts, private hospitals, and healthcare organisations, as well as data from private and public sector organisations. We process this data strictly on instructions of the Data Controllers who provide us with access to such data and abide by the privacy and security requirements as per the contractual arrangements with the Data Controllers. Egress do not keep a record of any data processed by it in the course of providing its services. We follow, and are fully committed to fulfil, our obligations as a Data Processor for data privacy, data security, and breach notifications.
Visitors to our Website
When you visit our website, we use third-party services to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to various parts of the website. The information is only processed in a way which does not identify anyone.
When you complete a contact form on our website or use the email for enquiries, we will use the information provided by you only for the purpose of providing you with an appropriate response.
Marketing Data
We hold name and contact details of individuals who have expressed interest in hearing from us about our services or have engaged with us for supply of our services in the past. All direct marketing activities to such individuals shall comply with relevant privacy and regulatory requirements.
Employee data
We hold name and contact details of all employees and Contractors who work with Egress. We also hold bank details, performance review and training records, contractual details and in certain circumstances, with consent, medical information. On leaving employment, your employee data will be held securely, in line with relevant regulatory requirements for an agreed period.
Automated Decision Making
We collect technical data automatically by using cookies and third-party analytics providers, such as Google. No other data we collect from you is processed in an automated manner.
Data subject rights
This Privacy Policy is intended to provide you with information about what personal data Egress collects about you and how it is used.
The GDPR provides the following rights for individuals:
If you have any questions, please contact us at contact@egressgroup.co.uk
If you wish to confirm that Egress is processing your personal data, or to have access to the personal data we may have about you, please contact us at contact@egressgroup.co.uk
You have a right to request correction of inaccurate information, deletion of information, and to instruct us to stop processing your information. We are obliged to honour such requests as per the regulatory requirements. If you would like more information or would like to make such a request, please contact us at contact@egressgroup.co.uk
Security of your information
To help protect the privacy of data and personally identifiable information you provide to us, we maintain physical, technical and administrative safeguards. We update and test our security technology and controls on an ongoing basis.
to provide benefits or services to you. In addition, we train our employees about the importance of confidentiality and maintaining the privacy and security of your information. We commit to taking appropriate disciplinary measures to enforce our employees' privacy responsibilities.
We also get our systems independently assessed to ensure that we have good security measures in place.
International Transfers
We do not generally transfer your personal data outside the UK or European Economic Area, however some Cloud providers we use may process data in the US.
Data storage and retention
Your personal data is stored by Egress on the servers of the cloud-services providers we engage. We retain data for the duration of the customer’s business relationship with us and as per the regulatory, legal, or reporting requirements. For more information on where and how long your personal data is stored, and for more information on your rights of erasure and portability, please contact us at contact@egressgroup.co.uk
This privacy policy was last updated on 11/10/2024
