BOOK YOUR NEXT APPOINTMENT

GET YOUR REPEAT PRESCRIPTIONS

PATIENT PORTAL

ENROL WITH LHC

Privacy Policy

Privacy Statement – This statement tells you how Lyttelton Health Centre uses and shares your personal information. 
Your ‘personal information’ is any information that can identify you as an individual. Your ‘health Information’ includes information about your health or disabilities and medical history. In this statement when we say ‘information’, we mean both your personal information and your health information. 
We comply with the Health Information Privacy Code 2020, and the Privacy Act 2020. 
If you have any queries about anything in this statement, email   or phone 03 328 7309 and ask to speak with the practice manager.

Who we are

Our website address is: https://lytteltonhealthcentre.co.nz/

What personal data we collect and why we collect it

We collect your personal and health information so that we can provide you with care and treatment, communicate with you and inform you of health services that may be relevant to you such as screening programmes.
We collect information from you directly, or from someone you have agreed we can speak to, for example, whānau, a support person or a relative. We will talk to you first to collect information unless there is good reason not to, for example, if you are sick and cannot agree to the information being provided to us.
To provide health services to you, your information is collected from other health care providers and organisations. These providers will have their own policies for sharing your information with us. Health providers we work with and receive information from can include other doctors, specialists, hospitals, laboratory and radiology and other results providers, community and social service providers, social workers, and other health professionals such as dental and optometry providers. Other organisations such as ACC and insurers, Ministry of Social Development and Police may also send us information as required. We will inform our patients if and when we collect information from other health care providers.
Collection of information is authorised under the Health Information Privacy Code 2020 and Privacy Act 2020 and related health legislation like the Health Act 1956.

How we use and share your information
We use your personal and health information to provide you with healthcare and to support the safe, effective running of our services, and we share it only when it is necessary for your care, required or permitted by law, or needed to meet funding, safety, and regulatory obligations.
[expand] We use your information to provide you with health services and share necessary and relevant information with other healthcare providers and professionals involved in your care.
We will usually tell you before we share your information, although we might need to share information without telling you first, for example because we are concerned about your or someone else’s life or health.
There are times when by law we are required to share information, for example when requested by Manatū Hauora | Ministry of Health, or the Health and Disability Commissioner.
Pegasus Health (Charitable) Limited receives information from us so that we can receive subsidised funding, and for clinical and administrative support.

If concerns are raised about the care or services we provide, we may disclose relevant health information to our regulators, insurers, indemnity providers, or legal advisers for the purpose of managing and responding to the concerns.
Our practice uses HealthOne. HealthOne is a South Island based secure electronic record that allows registered healthcare providers directly involved in your healthcare, to quickly access information such as your test results, allergies, medications, GP summaries and hospital information. HealthOne adheres to the principles of the Privacy Act 2020 as well as the Rules set out in the Health Information Privacy Code 2020.  Access is only possible via an approved highly secure healthcare information network which is regularly audited and tested. 
Privacy auditing is used to check that only those directly involved in your care are accessing your information. To find out more about HealthOne please visit the HealthOne website.  Please note that you are entitled to restrict the sharing of your healthcare records by contacting 0508 837 872 or emailing .

Holding your information
Information is kept for as long as legally required and for our specific organisational purposes. We are legally required to keep your health information for a minimum of ten years after the last time we provided you with a health service.

Your rights
You have the right to:
• Ask us to see any of your personal information that we hold.
• Ask us to correct your information if you think it is wrong.
Your caregiver or representative can also ask for information about you.
To make a request to see or correct your information, please contact the us.
If we are not the right people to respond to your request for information, we will let you know, and transfer your request to the right place. For example, it might be better that we ask another treatment provider to respond to you directly.
We will respond to you as soon as we can. If a response is going to take longer than 20 working days from the date of your request, we will let you know and keep you updated.

We will talk to you about how to give you the information, for example, if you want this as hard copy printed documents, or if we can email it to you. It is important that you receive your information safely. This may mean that we agree with you to send documents by courier requiring your signature, or the information is collected in person.
If the information is collected in person, then you will need to provide identity information, such as your driver’s licence or Kiwi Access Card. This is so we ensure we provide the information to the right person. We only need to see the identity information, and don’t keep a copy. 
If your care giver or representative asks us for information, we must provide this, unless a specific legal circumstance applies. These circumstances most commonly are: 
• We don’t think it is in your best interests to provide the information 
• We believe that you do not want the information to be provided 
• There is a reason under the Privacy Act why the information should not be provided. 
We may first ask your representative for some further information so that we know we are speaking to the right person and that they are authorised to talk to us on your behalf.

Privacy complaints
If you have concerns about your privacy and the handling of your personal information, please let us know. We will work with you and do our best to resolve your concern. We are always open to improving our processes and systems. 
If we are unable to resolve your concern, you have the right to complain to the Office of the Privacy Commissioner. Options for contacting the Privacy Commissioner are on the Commissioner’s website (privacy.org.nz). 

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

Contact form submissions are used solely for customer service purposes, but you do not use the information submitted through them for marketing purposes.

Cookies

To improve the experience on our site, we may use ‘cookies’. Cookies are an industry standard and most websites use them. A cookie is a small text file that our site may place on your computer as a tool to remember your preferences. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this, you may not be able to use the full functionality of this website.

We collect and store only the following information from people visiting our website that is automatically recognised: the date and time, the originating IP, the type of browser and operating system used, the URL of the referring page, the object requested, and the completion status of the request.

People who visit our website remain anonymous as none of the data we collect is linked to any personal information. The information only allows us to work on any problems with our server, and look at the popularity of the pages on our website, so that we can continually improve our site.

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

Our website uses Google Analytics, a service which transmits website traffic data to Google servers in the United States. Google Analytics does not identify individual users or associate your IP address with any other data held by Google. We use reports provided by Google Analytics to help us understand website traffic and website usage.
By using this website, you consent to the processing of data about you by Google in the manner described in Google’s Privacy Policy and for the purposes set out above. You can opt out of Google Analytics if you disable or refuse the cookie, disable JavaScript, or use the opt-out service provided by Google.

Who we share your data with

When visitors leave comments or product reviews on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Our contact information

If you have any feedback or a complaint, please contact Lisa Williams on 03 3287309 or at .

Summary of Your Rights Under the GDPR

Under the GDPR, you have:

– the right to request access to, deletion of or correction of, your personal data held by us;
– the right to complain to a supervisory authority;
– be informed of what data processing is taking place;
– the right to restrict processing;
– the right to data portability;
– the right to object to processing of your personal data;
– rights with respect to automated decision-making and profiling.

Disclaimer

We reserve the right to amend this privacy policy at any time without notice. You may request a copy of the privacy policy at any time.

Security Cameras

Security cameras are installed in our reception area as a crime deterrent.  Footage will be released to the Police if required as per Privacy Act principles 10 & 11.