We are the dedicated Health Services division of AXA PPP healthcare. The Health Services division is made up of 2 legal entities;
When we collect and use your personal information, we ensure we look after it properly and use it in accordance with our privacy principles set out below, keep it safe and will never sell it.
Whilst there are a number of ways in which we collect your personal information, the two main ways we might collect personal information about you are from things you tell us yourself either over the telephone, and from things we ask other people or organisations to share with us. Things you tell us could include conversations we have on the phone or face to face. We might also collect information about you from other people and organisations, such as your employer, AXA PPP healthcare, medical professionals (for example your GP), a treating specialist or physiotherapist in the form of a medical report.
We might collect personal information, such as your contact details and medical information. Please note, in certain circumstances we may need to process a large volume of medical information in order to provide the service to you or a third party for example your employer. The information may be very sensitive and confidential in nature. Where we provide services on behalf of your employer we will not share information without your consent. We mainly use your personal information to provide you with health-related services.
We will process your personal information to provide psychological and musculoskeletal services.
If you are accessing psychological services (Stronger Minds) or musculoskeletal services (Working Body) under your private medical insurance policy (or your employer’s policy if you receive this service as a benefit), we will process your personal information to deliver these services.
The delivery of these services may include processing medical information for the purpose of assessing, medical diagnosis, and provision of health care or treatment.
Your employer may instruct us to carry out health related services on health and safety grounds. This is done for the purposes of preventative or occupational medicine.
We will always seek your consent to process your information, undertake health-related assessments and to share your information with third parties for example your employer for occupational health purposes or a healthcare professional involved in your care for our other services. Our consent processes are based on the General Medical Council (GMC) Confidentiality Guidance and the Faculty of Occupational Medicine’s Ethical Guidance, as well as relevant laws such as the Access to Medical Reports Act 1988 (where applicable).
We may process your information to provide you with gym membership or to supply you with our products.
Note: as with all provisions of health-related services, there would be other legal grounds used to process your information, for example:
We use your personal information to help us understand our business and monitor our performance. We may provide reports to your employer, or a parent company, for example about service utilisation and the health of the workforce. The information we provide is anonymised which means you cannot be identified from the information. We may also use your personal information for customer satisfaction surveys and where possible, we will anonymise such information. However, sometimes we may need to use your personal information to do this and where we do, we will obtain your consent beforehand.
In order to provide our services your personal information is shared with other companies in the AXA Group for our general business administration purposes. We will never share your personal information for marketing purposes.
Disclosure of your personal information to a third party outside of the AXA Group will only be made where the third party has agreed to keep your information strictly confidential and shall only be used for the specific purpose for which we provide it to them.
Disclosure of your personal information to a third party outside of the AXA Group will only be made where the third party has agreed to keep your information strictly confidential and shall only be used for the specific purpose for which we provide it to them. Some of the recipients set out above may be in countries outside of the EEA notably in (i) Switzerland, where AXA has a European Data Centre, and (ii) India, where some administration is undertaken. Where we make a transfer of your personal information outside of the EEA we will take the required steps to ensure that your personal information is protected. Such steps may include placing the party we are transferring personal information to under contractual obligations to protect it to adequate standards. Occasionally there may also be some circumstances where we are required to transfer your personal information outside of the EEA and we shall rely on the basis of processing it for being necessary for the performance of your contract; for example, where you have a travel insurance policy and we need to contact you when you are on holiday.
In most cases, we only keep your information for as long as the regulations say we have to. This is usually between three and six years after our relationship with you ends but it will vary depending on what data we hold, why we hold it and what we’re obliged to do by the regulator or the law. Please note that for OH Health Surveillance we keep these records for 40 or 50 years as required by law.
You can ask us to do various things with your personal information. For example, at any time you can ask us for a copy of your personal information, ask us to correct mistakes, change the way we use your information, or even delete it. We’ll either do what you’ve asked, or explain why we can’t - usually because of a legal or regulatory issue.
You have a number of rights in relation to our use of your personal information;
You are entitled to a copy of the personal information we hold about you and certain details of how we use it. There will not usually be a charge for dealing with these requests. Your personal information will usually be provided to you in writing, unless otherwise requested, or where you have made the request by electronic means, in which case the information will be provided to you by electronic means where possible.
We take reasonable steps to ensure that the personal information we hold about you is accurate and complete. However, if you do not believe this is the case, please contact us and you can ask us to update or amend it.
In certain circumstances, you have the right to ask us to erase your personal information, for example where the personal information we collected is no longer necessary for the original purpose or where you withdraw your consent. However, this will need to be balanced against other factors, for example according to the type of personal information we hold about you and why we have collected it, there may be some legal and regulatory obligations which mean we cannot comply with your request.
In certain circumstances, you are entitled to ask us to stop using your personal information, for example where you think that the personal information we hold about you may be inaccurate or where you think that we no longer need to process your personal information.
In certain circumstances, for example occupational health, you have the right to ask that we do not transfer any personal information that we hold to another occupational health third party. For any personal information that is transferred a new occupational health provider, they will be responsible for looking after your personal information.
We will never use your personal information to contact you for marketing purposes.
Some of our decisions are made automatically by inputting your personal information into a system or computer and the decision is calculated using certain automatic processes rather than our employees making those decisions. We make automated decisions for some online Occupational Health assessments, for example a pre-placement health questionnaire for a new starter, a night worker health assessment or a periodic health assessment. These questionnaires contain specific sets of health questions that are used to assess an employee’s health and identify any potential risks in relation to their job role. Where the responses show that there are no health risks to the employee, the employee and employer are automatically informed that the assessment has been completed. Where health risks are identified the online Occupational Health Assessment system will notify the employee that an occupational health clinician will contact them to undertake a more detailed health assessment in relation to their job role. You have a right not to be subject to automated decision-making in the circumstances described above.
For certain uses of your personal information, we will ask for your consent. Where we do this, you have the right to withdraw your consent to further use of your personal information.
You have a right to complain to the ICO at any time if you object to the way in which we use your personal information. More information can be found on the following;
You can make any of the requests set out above by using the contact details you have been provided with for our services or alternatively as set out in section 7. Please note that in some cases we may not be able to comply with your request for reasons such as our own obligations to comply with other legal or regulatory requirements. However, we will always respond to any request you make and if we can't comply with your request, we will tell you why.
If you wish to contact the Data Protection Officer the details are below:
Health Services division of AXA PPP healthcare
The Data Protection Officer :
AXA PPP healthcare
23 St Leonards Road
email address: firstname.lastname@example.org
AXA ICAS Limited trading as a division of AXA PPP healthcare, is a private limited company incorporated in England and Wales with company number 02548573 and whose registered office is at 5 Old Broad Street London EC2N 1AD
AXA ICAS Occupational Health Services Limited trading as a division of AXA PPP healthcare, is a private limited company incorporated in England and Wales with company number 01336017 and whose registered office is at 5 Old Broad Street London EC2N 1AD
Wherever the name “AXA” is used on the Website, this implies one or more of the following companies within the AXA Group of companies, which may offer products or services on the Website. Further details can be found on the respective companies’ websites.
Trading as AXA PPP healthcare, a private limited company incorporated in England and Wales with company number 03148119 and whose registered office is at 5 Old Broad Street London EC2N 1AD
Registered Company Number: 02937724
Registered Office: 5 Old Broad Street London EC2N 1AD
Your personal information can help us give you a better, more personalised service. But looking after that data is a big responsibility. We take our responsibilities seriously, so we’ve introduced internationally-recognised data privacy rules to protect you. We keep your data safe, confidential and will never sell it. And, if you ask us to, we’ll tell you exactly what information we have so you can be sure it’s up-to-date and accurate. Our Commitment to Safeguard Personal information
We know that respecting the confidentiality of personal information is critical to preserving your trust and therefore have developed security procedures and we use a range of organisational and technical security measures designed to protect your personal information from unauthorized use or disclosure. We will always seek your consent to process your information, undertake health-related assessments and to share your information with third parties for example your employer for occupational health purposes or a healthcare professional involved in your care for our other services.