MJog Limited is GDPR compliant. Our staff take complete responsibility when handling data and adhere to our policies to enforce GDPR compliance. You are welcome to see our policy at any time. Please request this via email@example.com
All staff are trained upon induction, and every year in Information Security as well as GDPR.
We have a privacy notice that informs what we do with their personal data, and as a processor how we handle a Practices data and that of the patient. This is also on our website.
We have processes in place to support GDPR, such the right for data to be erased, and breach notification. As a company we also complete a privacy impact assessment on all new products or enhancement to our services that we may introduce to make sure that all aspects of data security are considered.
No personal data is transferred outside of the UK.
When processing data we undertake the following:
• The processing is lawful, fair and transparent
• Transparent about what the data is being used for
• Data is collected for a specific purpose
• The data is necessary for the purpose
• The data must be accurate and kept up to date
• Data is not kept for longer than necessary
• The data is kept safe and secure
We do not process sensitive information directly. We may process information on behalf of a Practice when it is contained within a message sent out via out services. This would be subject to strict privacy controls, security and encryption. For our policy on this, please contact the Data Protection Officer at firstname.lastname@example.org
All our suppliers have GDPR procedures in place.