HeadOn
 
 

Privacy policy

HeadOn Health is committed to protecting and respecting your privacy.

This Privacy Policy ("Policy") outlines the types of information we collect, how we use it, the security measures we implement and to inform you about your rights according to the European Union’s General Data Protection Regulation ("GDPR").

About our services

When we discuss our service in this policy, we are referring to our web application, which we make available to you on the basis of our Terms and Conditions. Our service is currently available via a web browser on any laptop, mobile or tablet.
You may create an account through our service, in which case we will refer to you as a "user" in this policy.

Who we are

We are Headon Health Limited, a company incorporated and registered in Scotland - Company number: SC622639. When we refer to "we", "us" or "our" in this policy, we are referring to Headon Health Limited.

For the purposes of the Data Protection Bill 2017 and the European General Data Protection Regulation, we are the data controller.

Processing your data

Personal information

We will collect personal information for registration purposes. i.e. your name, email address, age, user name, password and other registration information. The purpose of this data is to deliver a personalised course and communicate with you.

Health-related information

We may also collect health related information. I.e. information on your symptoms, mood and sleep. We collect this in order to deliver our self-management program. We may also collect information on your mental and physical well-being in order to monitor your progress and efficacy of the program.

Non-identifiable information

We may analyse your data as part of an aggregated data set which is shared with our research partners and published in peer reviewed journals. In these sets, your data is not personally identifiable.

Your Data Protection Rights Under General Data Protection Regulation (GDPR)

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. You have rights under data protection laws in relation to your personal data including but not limited to:

  • Right to access to your personal data.
  • Right to correct your personal data.
  • Request erasure of your personal data.
  • Right to object to processing of your personal data.
  • Right to request the restriction of processing your personal data.
  • Right to request transfer of your personal data.
  • Right to withdraw consent.

For these purposes, please contact us by sending us by email Christine@headon-health.com

How long we keep your data

HeadOn Health LTD will not retain your personal information longer than necessary. We will hold onto the information you provide either while your account is in existence, or as needed to be able to provide the Services to you.

How we store your data

Information you provide us is stored in encrypted format in a secure cloud service operated by Microsoft Azure. Microsoft are world leaders in secure cloud service provision and comply with industry standards in data protection. You can find out more about their security policies here: https://azure.microsoft.com/en-gb/overview/trusted-cloud/privacy/

If you have questions or comments about our Privacy Policy, please let us know via: Christine@headon-health.com

Cookies Statement

HeadOn Health’s site uses strictly functional cookies, by using our site you are accepting the use of the cookies for functionality on our site.

We use Hotjar in order to better understand our users’ needs and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users experience (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback. Hotjar uses cookies and other technologies to collect data on our users’ behavior and their devices (in particular device's IP address (captured and stored only in anonymized form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), preferred language used to display our website). Hotjar stores this information in a pseudonymized user profile. Neither Hotjar nor we will ever use this information to identify individual users or to match it with further data on an individual user. For further details, please see Hotjar’s privacy policy by clicking on this link.

Third party data access

A number of third parties may have access to your data including Edinburgh University, NHS Lothian and Pogo Studios Ltd. This access is limited to necessary technical support or to permit research.