At Night Doctor, we are committed to protecting your privacy and handling your personal
information with care and transparency. This Privacy Policy outlines how we collect, use, store, and
protect your data when you use our services or visit our website. It also explains your rights under
the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
Night Doctor is a UK-based service specialising in connecting customers with out-of-hours and
urgent care appointments in private UK-based clinics. Our website, nightdoctor.co.uk, allows users
to learn about the services and book GP consultations directly with medical service providers.
Night Doctor acts as a data processor: we collect and securely transfer booking details to the clinic
of your choice. Once your data has been passed on, the relevant clinic becomes the data controller
for your medical records and is responsible for providing your care.
Our current partner clinics are:
– Ovara Health
– Kensington International Clinic
We may collect and process the following categories of personal data to handle your booking:
– Identity Information: Name, date of birth, gender.
– Contact Details: Email address, phone number, postal address.
– Medical Information: Limited details you provide when making a booking or enquiry (e.g. reason
for visit, symptoms).
– Technical Data: IP address, browser type, device details, operating system, and website usage.
– Communication Data: Emails, contact form submissions, or phone call records.
Special category data (medical or health information) is only collected when required to arrange
your consultation or with your explicit consent.
– When you complete booking or enquiry forms on our website.
– When you email or call us directly.
– When you engage with us on social media.
– Through cookies and other technologies while browsing our site.
We use your data under lawful bases defined by UK GDPR:
– Contract: To process your booking and connect you with a clinic.
– Consent: For optional communications, e.g. newsletters.
– Legal Obligation: To comply with medical and regulatory standards.
– Legitimate Interests: To improve our services and maintain secure operations.
Your personal information may be used to:
– Process your booking and pass details securely to your chosen clinic.
– Share your information with the partner clinic (Ovara Health or Kensington International Clinic)
providing your care.
– Communicate with you about appointments, services, and booking confirmations.
– Improve our website functionality and services.
– Comply with medical, legal, or regulatory obligations.
Night Doctor does not use your data for automated decision-making or profiling.
We do not sell or rent your personal data. However, to provide services we may share it with:
– The partner clinic you select (Ovara Health or Kensington International Clinic), who will then
become the data controller responsible for your medical records and treatment.
– Healthcare professionals at the partner clinic involved in your care.
– Diagnostic laboratories where testing is required (via the clinic).
– Service providers (IT, cloud, booking systems) under confidentiality agreements.
– Regulators or legal authorities if required by law.
All third parties must meet strict data protection standards and may only process your data for
specified purposes.
We use encryption, secure servers, and access controls to safeguard your data. Only authorised
staff and clinicians can access your personal information, and access is reviewed regularly.
Night Doctor retains booking data only as long as necessary to process and transfer it to your
chosen clinic. After this, the clinic (Ovara Health or Kensington International Clinic) is responsible
for maintaining your medical records in line with medical and legal requirements.
You have the right to:
– Access the personal data we hold about you.
– Correct inaccuracies in your information.
– Request erasure of your data in certain cases.
– Restrict or object to processing.
– Withdraw consent (for consent-based processing).
– Request portability of your data.
Once your data is transferred to a clinic, you should direct medical record–related rights requests
(e.g. access, correction, erasure) to that clinic, as they are the data controller.
If you are concerned about how your data is handled, you may contact the Information
Commissioner’s Office (ICO): https://ico.org.uk.
Our website may link to third-party websites. We are not responsible for their privacy practices and
encourage you to review their policies.
This policy may be updated periodically. Updates will be posted on this page with a revised
effective date.
Created by Smart CubeCode
