close

We use cookies to ensure that we give you the best experience on our digital platform. Click here for more information.

Your personal information

Privacy

Your privacy is important to us, for this reason we have designed a privacy statement which will outline how we protect your privacy. We ask you to read this statement so that you can make an informed decision about using Amity.

Data minimisation

We are committed to ensuring that any data we collect adheres to GDPR data minimisation guidelines. We ensure that we collect an adequate amount to enable you to use your Amity account to the greatest benefit, that the data is relevant and has a rational link and purpose to the Amity platform, and we ensure it is limited to only that which is necessary.  

Sharing of Information

Amity is designed so you, as the patient, have complete control over whom you connect with and what information you share with them.

We will never share or sell your data with any third parties with regards to marketing or any purpose other than that which is necessary to securely identify and authenticate you when connecting with third parties. 

NHS Login data sharing

When connecting you to third parties, the following information is shared in order to securely verify who you are: NHS number, date of birth, first name, last name, email address. We do not receive any of the additional information used when you sign up with NHS Login, and we only use the bare minimum of data we need to verify your identity.

Signing in with NHS Login is compulsory if you wish to connect with other apps. You can choose whether or not you want to do this, and easily opt out and choose to only use Amity’s basic features.

Your personal tracking and health data

All data that has been input by yourself using the trackers, health condition section, diary, goals and coping strategies is stored securely and treated as highly confidential information with the same protocols in place as that for personally identifiable information. We do not sell or share your own personally input healthcare to any third parties for research or any other purpose. Your data belongs to you and is not shared outside of the Amity platform, unless it directly relates to the necessary function of a third party connection. You will be informed and asked to consent to data sharing when enabling any of the third party connections. 

You can opt out of sharing your personal data with any third party by choosing not to connect with Evergreen, keeping your digital documents settings turned off, and not connecting with Recap or any other app. If you choose to do this, you will still be able to use Amity’s trackers, see some resources, and monitor and record your own health. However, you will not have access to the full suite of benefits that the connections to other apps provide within the Amity ecosystem.

 Anyone you provide access to in your circle will also be able to see your personally entered information, if you have given them access to that particular part of your patient portal. You can manage this access in your ‘Connect’ section. 

Contacting you

We may occasionally contact you ourselves with a view to asking for feedback about the Amity platform. If you would like to opt out of receiving any such emails, please send a message to dataprotection@mindwaveventures.com and we can remove you from the list.

If you suspect there has been a breach of data confidentiality, in the first instance you should contact us on dataprotection@mindwaveventures.com so that we can look into it straight away. You have the right to complain to your Local Supervisory Authority, or to the Information Commissioner’s Office in the event of a data confidentiality breach.

Similarly, if you have any reason to suspect that a child is using the Amity platform to upload personal information without parental consent, please also email dataprotection@mindwaveventures.com.

How is your data stored?

Your data is stored in compliance with recognised NHS Data Standards. Mindwave Ventures is compliant with the DSP Toolkit, NHS Information Standards for protecting bulk data. 

Your data is stored in our secure Azure servers based in the UK South. All the data is secured through 256-bit AES encryption that is always on and cannot be turned off. To read more about how your data is stored, please click here

For more information

If you have any additional questions regarding this policy, please feel free to contact us at:
Katy Edwards
Data Protection Lead
dataprotection@mindwaveventures.com