First Health Check

Privacy Policy & Cookies

1. Introduction

First Health Check (referred to as “we,” “our,” or “us”) values your privacy and is committed to protecting your privacy and personal data that we process. This Privacy and Cookie Policy explains how we collect, use, and protect your information when you visit our website or use our services. This policy complies with the UK (GDPR) and the Data Protection Act 2018 (DPA).

2. About Us and Data Collection

“First Health Check” (and “we,” “our,” or “us”) refers to First Health Check  Ltd (company number 12424647) and is the controller of all personal data processed about you during the provision of all our services to you.

We collect personal data from you in the following ways:

  • Personal Identification Information:Name, contact details (phone number, email, address), passport number and demographic information.
  • Health Information:As part of our healthcare services, we may collect medical history and health status information, which will be handled with the highest level of confidentiality.
  • Financial Information:Payment details to facilitate transactions for our services.
  • Usage Data:Information about how you use our website and services, such as IP address, browser type, and browsing history.
  • Register or fill out forms on our website, app, social media pages and all marketing channels.
  • Contact us by WhatsApp.
  • Interact with our partner BAPS hospital as part of your healthcare journey.
  • Images resulting from scans of your body and other diagnostic procedures from our partner BAPS hospital.

Radiologists’ interpretations of scans of your body and interpretations of other diagnostic procedures from our partner BAPS hospital

3. Use of Your Information

We use your personal data for the following purposes:

  • To provide and improve our healthcare services, including assessments and consultations.
  • To arrange your medical appointments, procedures, and healthcare packages with our partner, BAPS hospital.
  • For billing and payment processing.
  • To comply with legal requirements and ensure patient safety.
  • To communicate with you about our services, updates, and other relevant information.

4. Personal data that we process about you

We process and share the following personal data about you:

  1.  To BAPS hospital in India for the provision of healthcare services. BAPS hospital operates under its own data protection policies and may process your data as required for medical services.
  2. Service providers who assist us in website hosting, data analysis, payment processing, and customer support.
  3. Regulatory and government authorities if required by law or to protect our rights and ensure compliance with healthcare standards.
  4. Financial information, such as details about your payment, your bank or credit and debit card details or insurance policy details.
  5. Title
  6. First and last name
  7. Date of Birth
  8. Home address
  9. Mobile or home telephone number, including(WhatsApp)
  10. Email address
  11. Marital status
  12. Height
  13. Weight
  14. Gender
  15. Answer to questions about your medical history
  16. Answer to questions about your family medical history
  17. Contact details of your General Practitioner (GP), if required

5. Purpose for the processing and the lawful basis for the processing

  1. We process your personal data and special category, medical personal data only for the purpose to provide you with the services you have requested. The lawful basis for processing your personal data is that it is necessary for the performance of our contract with you.
  2. We also process your personal information for a number of legitimate interests, including managing all aspects of our relationship with you, to provide important updates to you and on occasion to inform you about future health assessments that may be relevant to you, to help us improve our services and products, and to exercise our rights or handle insurance claims.
  3. To manage our relationship with you, our business and third parties who provide services for us.
  4. To make sure that diagnostic imaging services are handled efficiently and to investigate complaints (for example, we may ask the referring doctor/consultant for information to make sure we receive accurate information and to monitor the quality of your treatment and care).
  5. Keep our records up to date and to provide you with marketing as allowed by law.
  6. Statistical research and analysis so that we can monitor and improve products, services, websites and apps, or to develop new ones.
  7. Monitor how well we are meeting our clinical and non-clinical performance expectations through patient feedback surveys.
  8. Enforce or apply our website terms of use, our policy terms and conditions or other contracts, or to protect our (or our customers’ or other people’s) rights, property or safety.
  9. Exercise our rights, to defend ourselves from claims and to keep to laws and regulations that apply to us and the third parties we work with.
  10. In very rare situations (such as suspicion of an infectious disease) we would have a legal obligation to disclose your personal data to relevant authorities.

6. Sharing your personal data

We will share your personal data with:

  • Medical professionals directly involved in your preventative health assessment and, as appropriate, any diagnosis and treatment. The care team directly involved with your health assessment, diagnosis and treatment are deemed to have a “legitimate relationship” with you. This includes medical professionals employed by our service provider BAPS hospital, Ahmedabad, India. Members of your care team are expected to share confidential information when it is needed for your safe and effective care, including referrals to consultants. However, you will be informed prior as to who will see your confidential information.
  • Third parties where you have provided your explicit consent to the sharing for a specific purpose or service.
  • Any other organisation paying for the services we provide to you, including insurers and public sectors.
  • People or organisations we have to, or are allowed to, share your personal information with by law (for example, for fraud-prevention or safeguarding purposes, the police and other law-enforcement agencies to help them perform their duties, or with others if we have to do this by law or under a court order.
  • Other third parties we work with to provide our services, such as specialist Consultant Radiologists and Consultant Physicians, medical diagnostic partners, agents working on our behalf, insurers, actuaries, auditors, solicitors, translators and interpreters, tax advisers, debt-collection agencies, credit-reference agencies, fraud-detection agencies (including health-insurance counter-fraud groups), regulators, data-protection supervisory authorities, health-care professionals, health-care providers and medical-assistance providers.

7. International Data Transfers

As part of our international partnership with BAPS Hospital in Ahmedabad, India, your personal data will be transferred outside the UK to India not subject to an adequacy decision by the UK. We will ensure that appropriate safeguards, such as Standard Contractual Clauses, are in place to safely protect your data.

  • The transfer is made under the provision of UK binding corporate rules.
  • The transfer is made in accordance with one of the exceptions set out in Data Protection Legislation.
  • The transfer is made under International Data Transfer Agreement (IDTA) which is a contract that regulates and protects transfers of personal data between countries and / or the International Data Transfer Addendum (Addendum) which is an addendum to the new standard contractual clauses issued by the European Commission.

8. Marketing

We may use your personal data to send you marketing communications about our services, products, or offers that we believe may be of interest to you. We will only send you marketing communications if you have given us your consent or if we have a legitimate interest in doing so.

You can opt-out of marketing communications at any time by:

  • Clicking the “unsubscribe” link in any marketing email you receive.
  • Contacting us directly to withdraw your consent.

We will only use your personal data for marketing purposes in compliance with applicable data protection laws.

9. Data Security

  • Encryption: We use encryption technologies to protect your sensitive information, such as medical records and payment details.
  • Access Controls: We restrict access to your personal data to authorised personnel only.
  • Regular Security Audits: We conduct regular security audits and vulnerability assessments to identify and address potential security risks.
  • Data Retention: We retain your personal data for as long as necessary to fulfil the purposes outlined in this policy or as required by law.
  • Once the retention period expires, we will securely delete or anonymise your data.

10. Data Retention

We retain personal data only as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Health records are kept securely as required under healthcare regulations.

11. Your Rights

Under the UK GDPR, you have the following rights:

  • Access:Request a copy of your data held by us.
  • Correction:Request correction of any inaccurate data.
  • Deletion:Request deletion of your data, where applicable.
  • Restriction:Restrict the processing of your data.
  • Objection:Object to processing based on legitimate interests.
  • Data Portability:Request transfer of your data to another service provider.

12. Cookies

We use cookies on our website to enhance your user experience and analyse website traffic. Cookies are small files stored on your browser or device.

  • Necessary Cookies:Essential for website functionality.
  • Analytical Cookies:Help us understand user behavior on our site to improve services.
  • Functional Cookies:Enable website personalization.

You can control cookie preferences in your browser settings. Refusing cookies may affect certain features on our website.

13. Managing Cookies

When you visit our website you will be presented with a Cookie Banner that will provide you with some details regarding cookies and give you a choice whether to accept or decline the cookies that we use. You can also manage your cookies through your browser.

14. Changes to This Policy

We may update this Privacy and Cookie Policy periodically to reflect changes in the law or our practices. We encourage you to review this policy regularly.

15. Contact Us

If you have any questions or concerns about this Privacy and Cookie Policy, or if you would like to exercise your data rights, please contact us:First Health Check
Email: info@firsthealthcheck.com

Request a Callback