Hormonity is committed to protecting patient privacy. Personal and medical information is handled in compliance with UK data protection laws.
You have various rights under applicable data protection laws, including the UK General Data Protection Regulation (UK GDPR). However, please note that privacy law is complex, and these rights do not always apply in all circumstances — particularly in relation to your medical records.
As a healthcare provider, Hormonity has a legal responsibility to retain and maintain accurate health records. In many cases, healthcare regulatory obligations take precedence over standard data protection rules.
Your rights include the following:
Access your personal data (Subject Access Request):
You have the right to request a copy of your medical record and to have any errors or inaccuracies corrected.
To do so, please speak to a member of staff or refer to our Subject Access Request Policy [insert link].
Please note: You do not have the right to delete correct and lawful clinical information from your medical record. If you believe there is no lawful basis for us holding certain information, you may wish to seek legal advice and contact us with your concerns.
Object to how we are using your data:
You have the right to object to your data being shared between those involved in your direct care.
This may impact the quality or continuity of your care, so please speak to a member of our team if you are considering this.
You cannot object to the sharing of your basic demographic information (such as your name, date of birth, and contact details) with our clinical systems provider, Semble. This data is essential for registration and care provision.
You also cannot object to data sharing in safeguarding situations — sharing in these circumstances is a legal and professional requirement to protect you or others from harm.
Withdraw your consent:
Where we rely on your consent (for example, for sending marketing or non-clinical communications), you have the right to withdraw your consent at any time.
This will not affect the lawfulness of any processing we carried out before your consent was withdrawn.
Lodge a complaint:
If you are unhappy with how your personal data has been handled, you have the right to make a complaint either directly to us or to the Information Commissioner’s Office (ICO), which oversees data protection compliance in the UK.
ICO Contact Details:
Website: https://ico.org.uk/global/contact-us/
Helpline: 0303 123 1113
Useful External Information:
1. Information Commissioner’s Office – Right to Erasure:
https://ico.org.uk/for-the-public/your-right-to-get-your-data-deleted/
2. Medical Defence Union – GDPR and Medical Records:
https://www.themdu.com/guidance-and-advice/guides/gdpr-a-guide-for-doctors
