Privacy Information Notice

Date: 25/05/2018
Review Date: 25/05/2019

Wave Healthcare Communications is committed to ensuring the security and protection of the personal information we process.

This Policy explains when and why we collect personal information, how we use it, the conditions under which we may disclose it to others and what choices you have. It relates to all our business activities, not just this website.

This Policy may change so please check this page occasionally to ensure that you’re happy with any changes. By using our services, you’re agreeing to be bound by this Policy.

Questions regarding this Policy and our privacy practices should be sent by email to info@wavehealthcare.co.uk. 

1. Who are we?

Wave Healthcare Communications is an independent medical communications company providing services to global pharmaceutical companies.

Registration details as follows:

Registered in England No. 4159862

Registered office: The Griffin, 12 The Broadway, Amersham, Bucks HP7 0HP

Full contact details can be found on our website contact page.

2. How do we collect information from you?

We obtain information about you when you contact us to enquire about our services, our programmes or employment opportunities

We may also obtain information about you from third party sources.

3. What information do we collect & how is it used?

Sensitive Data
We do not gather sensitive personal data (e.g. health, genetic, biometric data; racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, sexual orientation, and criminal convictions). We ask that you do not provide any such sensitive data to us.

Children’s information
Our services are not directed to children under 13. If you learn that a child under 13 has provided us with personal information without consent, please contact us.

Third Parties
We will not sell or rent your information to third parties.

We will not share your information with third parties for marketing purposes.

We may pass your information to third party service providers who we have engaged for the purpose of completing tasks and providing services to you on our behalf. We disclose only the personal information that is necessary to deliver the service.

We also use a number of 3rd party services to help us fulfil our contractual obligations and we have verified that these 3rd party services are GDPR compliant (or are working towards GDPR compliance).

4. Controlling your information

You have certain rights concerning the information we hold about you, as defined under the General Data Protection Regulation. If you wish to exercise these rights, please contact us, including your email address in the first instance (this is the unique identifier we use to identify and collate personal information).

Requesting a copy of your information
You may request a copy of any data we hold about you. Upon request, we will provide files (which you may open in a programme such as Microsoft Office or Adobe PDF format) containing the personal data we hold on record about you.

Updating or correcting your information
The accuracy of your information is important to us. If you change email address, or any of the other information we hold is inaccurate or out of date, please contact us so we may correct our records.

Deleting your information
You have the right to request erasure of your personal information. Unless there is a compelling reason for the data not to be erased (for example, if we need to use that data to fulfil our contractual or legal obligations), your personal data will be deleted on request.

Automated decision making
We do not use any personal information for automated decision making or profiling; your data is not subject to automated decision making or profiling. 

5. Use of ‘cookies’

We may collect information about your computer, including your IP address, operating system and browser type, for system administration and in order to create reports. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual.

The only cookies in use on our site are for Google Analytics. Google Analytics is a web analytics tool that helps website owners understand how visitors engage with their website. Google Analytics customers can view a variety of reports about how visitors interact with their website so that they can improve it.

Like many services, Google Analytics uses first-party cookies to track visitor interactions, as in our case, where they are used to collect information about how visitors use our site. We then use the information to compile reports and to help us improve our site.

Cookies contain information that is transferred to your computer’s hard drive. These cookies are used to store information, such as the time that the current visit occurred, whether the visitor has been to the site before and what site referred the visitor to the web page.

Google Analytics collects information anonymously. It reports website trends without identifying individual visitors.

6. Security

Wave Healthcare Communications takes security seriously. In order to protect your information from loss, misuse or unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect. These steps include the following:

  • Data minimisation
  • Password best practice
  • Security best practice concerning devices (PCs, laptops, mobile devices), online accounts, website hosting, physical access and storage
  • Up to date virus protection software
  • Staff training and accountability on data protection

7. Data Breaches

Our Data Security Policy includes a clear process for handling a personal data breach, should one occur. Where appropriate, Wave Healthcare Communications will promptly notify you of any unauthorized access to your personal information. 

8. Complaints

If you wish to raise a complaint on how we have handled your personal information, you can contact us directly and we will investigate the matter.

If you are not satisfied with our response or believe we are processing your personal information not in accordance with the law you can complain to the Information Commissioner’s Office (ICO).