1. Westfield Health’s approach
1.1 Westfield Health is a trading name of Westfield Contributory Health Scheme Ltd.
2. Who may process data
2.1 Personal information will only be collected with the customer’s consent.
2.2 The customer’s personal information (which includes name, address and any other details provided by the customer to Westfield Health which identify the customer as an individual) may be processed by Westfield Health.
2.3 Westfield Health may disclose or receive personal information or documents about you to/from other companies within the Westfield Health group, its authorised carriers, its service providers and other selected organisations.
2.4 Westfield Health may be required to disclose personal information or documents about a customer if required to do so by law in the prevention of criminal activities in accordance with UK legislation.
2.5 Westfield Health will not disclose your personal information to any third parties without your consent.
3.1 Westfield Health will take all reasonable steps to ensure that personal information that is held is accurate, complete and up to date.
3.2 Please let us know if the personal information which we hold about you needs to be corrected or updated.
4. Purpose of processing
4.1 Westfield Health, other Westfield Contributory Health Scheme Ltd group companies, its authorised carriers and service providers will use the customer’s personal information for the purpose of administering Westfield Health’s relationship with the customer, such as, order fulfillment, verifying the customers identity and delivery address, authorising debit/credit card payments and processing any other transactions authorised by the customer.
4.2 In the interests of continuously improving our service to customers and for training purposes telephone calls to Westfield Health will be recorded and monitored. This will include the recording and monitoring of Sensitive Personal Data such as data relating to health and medical conditions.
4.3 Information provided to us or collected by us in connection with the use of this website and/or the customer’s plan will be used to provide the benefits applied for and for maintaining the customer’s records. This will include the recording and monitoring of Sensitive Personal Data such as health and medical conditions. This information may be passed to selected third parties for underwriting, claims handling procedures, to provide the services included in the plan, and to prevent and detect fraud. 2
4.4 Where customers have provided information about another person the customer should ensure that they have their consent to do so.
4.5 We may occasionally use the contact information customers have provided, whether provided now or in the future, to contact you or other persons named here by post, email, text or phone with marketing offers, details of our other products and services, and research. To opt out contact us at the address in paragraph 9 below.
4.6 We may also share all contact details with other selected organisations who may contact you or other persons by post or phone about other products and services. To opt out contact us at the address in paragraph 8 below. If you are happy to receive emails/texts from these other selected organisations please contact us at the address in paragraph 12 below.
In addition, we may disclose your personal information:
- to the extent that we are required to do so by law;
- in connection with any legal proceedings or prospective legal proceedings;
- in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk);
- to the purchaser (or prospective purchaser) of any business or asset which we are (or are contemplating) selling; and
- to any person who we reasonably believe may apply to a court or other competent authority for disclosure of that personal information where, in our reasonable opinion, such court or authority would be reasonably likely to order disclosure of that personal information.
6. International data transfers
6.1 Information that we store and process is not transferred internationally.
7. Visitors to our website
7.1 When someone visits our website we collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the website. We collect this information in a way which does not identify anyone. We do not make any attempt to find out the identities of those visiting our website.
7.2 We use Google Analytics to help analyse use of our website. This analytical tool uses ’cookies’, which are text files placed on your computer, to collect standard internet log information and visitor behaviour information in an anonymous form. The information generated by the cookie about your use of the website (including your IP address) is transmitted to Google. This information is then used to evaluate visitors’ use of the website and to compile statistical reports on website activity for Westfield Health. We also use Google Analytics and Facebook cookies for cross-device remarketing purposes. Please see our Cookies policy page for more information.
7.3 Westfield Health will not (and will not allow any third party) to use the statistical analytics tool to track or to collect any personally identifiable information of visitors to our site. We will not associate any data gathered from this site with any personally identifying information from any source as part of our use of the Google statistical analytics tool. Google will not associate your IP address with any other data held by Google. Neither Westfield Health nor Google will link, or seek to link, an IP address with the identity of a computer user.
7.4 The search engine on our website is designed to be as powerful and easy to use as the popular search engine Google. The search is made possible by a piece of hardware (a search ‘appliance’) supplied by Google that is plugged into our server and continuously indexes the content on our site. All search requests are handled by the appliance and the information is not passed on to any third party, including Google.
7.5 If we do want to collect personally identifiable information through our website, we will be upfront about this. We will make it clear when we collect personal information and will explain what we intend to do with it.
8. Security of your personal information
8.1 The Westfield Health website is secure. The security of the website can be verified by simply right-clicking on the order page and choosing "Properties". This shows the URL and that the connection is SSL with 128 bit encryption.
8.2 We will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal information.
8.3 You are responsible for keeping your password and user details confidential. We will not ask you for your password (except when you log in to the website).
9. Third party websites
9.1 This site may also contain hypertext links to websites operated by third parties. The responsibility for the operation and content of those websites shall rest solely with the organisation identified as controlling the third party website and will be governed by separate terms and conditions. Links are provided for convenience and inclusion of any link does not imply endorsement in any way of the site to which it links. We accept no responsibility or liability for the contents of any linked website.
10. Access to customers personal information
For a small fee customers are entitled to a copy of the information, which we hold about them by writing to the Data Subject Rights Officer at the address in paragraph 12 below.
Our data protection registration number is Z5678949.
11. Contact Details
60 Charter Row