Privacy Policy

Kinetech handles personal information, including health information, in connection with the provision of its patient information access service. This notice explains, in general terms, what information may be collected, why it is used, how it may be accessed, and how patients can contact us about their information.

What information may be collected

Depending on the service provided, Kinetech may collect and process information such as:

 name and contact details

 date of birth

 emergency contacts

 health information provided during setup

 medicines, allergies, diagnoses, and related medical details

 documents or records supplied by the patient or family

 technical and service-use information needed to operate the service

Where the information comes from

Information may come from:

 the patient

 a parent or lawful representative, where applicable

 documents supplied during setup

 information entered or reviewed as part of the setup process

Purpose of processing

Kinetech processes information for limited service-related purposes, including:

 setting up and maintaining the patient’s digital record

 linking the record to the Kinetech card

 making selected information available in care settings

 responding to update requests

 meeting legal, governance, and service administration requirements

Important limitation

The Kinetech record is intended to support access to selected health information. It should not be treated as a complete substitute for hospital, clinic, laboratory, or pharmacy records.

Consent and lawful basis

Where consent is relied upon, Kinetech seeks consent through its service process. Health information is sensitive personal data, and patients should read this notice carefully before using the service.

Where a child or a person lacking legal capacity is involved, the relevant parent, guardian, or other lawful representative should be involved as required.

Access in care situations

The service is designed to allow selected information to be viewed through the patient’s card in a care situation. Patients should understand that this design may involve privacy trade-offs. Kinetech therefore encourages patients to read this notice carefully and ask questions before using the service.

Accuracy and updates

Patients are encouraged to provide accurate information and to notify Kinetech when important details change. The usefulness of the record depends in part on the accuracy and currency of the information provided.

Retention

Kinetech retains information for the period stated in its service process or as otherwise required by applicable law or governance requirements. Where the service model provides for deletion after a defined period, that process should be described clearly to the patient at the time of service.

Data hosting and service providers

Kinetech may use third-party service providers, including technology or hosting providers to operate the service. Where such providers are used, Kinetech aims to ensure that appropriate contractual and organisational measures are in place for the protection of personal data.

Security wording

Kinetech aims to use reasonable safeguards appropriate to the service, but no digital system should be described as fully risk-free or completely secure in all circumstances.

Patient rights and contact

Patients may contact Kinetech to ask about access, correction, withdrawal of consent where applicable, deletion requests, or other privacy-related concerns, subject to applicable law and service requirements.

Complaints

If a patient has a complaint about the handling of personal data, Kinetech encourages the patient to contact the company first so that the issue can be reviewed and addressed through the available process.

To execute any of these rights, contact our DPO at kinetech.mobility@gmail.com.