This privacy notice governs your use of the software application PainSense Pain Toolkit or PainSense Pain Management Plan (“Apps”) for mobile devices that was created by ADI Health.
The Apps provides a set of practical, easy to use self-management tools for people with persistent pain. The App is based on proven methods developed with the help of people living with persistent pain. There is a set of information resources that a user can browse without registration.
The Apps main functionalities can be accessed either by a registration ‘token’ generated from a participating primary care provider (such as a GP or Pain Clinic) and enabling use of a secure link to the provider’s clinical system, or via an in-App purchase for stand-alone use with no link to a clinical system.
By design, data collected by the Apps is stored in an anonymised form, which prevents identification of individual users without prior knowledge of their NHS number (where a registration token is provided by an NHS care provider), email address (in the case of in-App purchase), and date of birth.
What information does the App obtain and how is it used?
The App obtains the information you provide when you download and either register in-App with a token supplied by a participating primary care provider, or if you elect to purchase full access. You will not be able to use some of the features offered by the App unless you register with your token or purchase full access.
If you register using a token, you provide (a) your token, NHS number, date of birth, password and other registration information; (b) any information you provide us when you contact us for help; and (c) information you enter into the App, such as answers to the self-assessment questionnaires.
If you purchase in-App, you generally provide (a) transaction-related information (such as credit card details) when you make the purchase; (b) email address, date of birth, password and other registration information; (c) information you provide us when you contact us for help; and (d) information you enter into the App, such as answers to self-assessment questionnaires.
Information you enter during registration and use of the app is securely stored in a server controlled by ADI Health and located within the UK. This enables you to synchronise apps running on multiple devices (e.g. your phone and your tablet), and enables you to recover your account information if you change or lose your phone.
Information you provide as part of the in-App purchase process (your credit card details, Google/Apple ID, etc.) is sent directly to Google or Apple (as appropriate), and is not made available to ADI Health.
In addition, the App and our server may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile devices unique device ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browsers you use, and information about the way you use the App.
Does the App collect location information for the device being used?
This App does not collect information about the location of your mobile device.
Do third parties see and/or have access to information obtained by the App?
We will share your personal information with third parties only in the ways that are described in this privacy statement.
If you have registered using a token, with your explicit consent (by pressing the “Send” button), data will be shared only with those responsible for your care. The computer system administrators also have access to enable them to fix technical difficulties; all such accesses are logged and reviewed.
Your information might also be shared anonymously (with your personal details removed) and/or combined with information from other patients, with other NHS organisations in order to improve the care provided to, and experience of, other patients.
We may also disclose User-Provided and Automatically-Collected Information:
- as required by law, such as to comply with a warrant, or similar legal process;
- to our trusted service providers who work on our behalf, do not have an independent use of the information we disclose to them, and have agreed to adhere to the rules set forth in this privacy statement; and
- if ADI Health is involved in a merger, acquisition, or sale, of all or a portion of its assets, in which case you will be notified via a prominent notice on our web site of any change in ownership, as well as any choices you may have regarding your information.
What are my opt-out rights?
You can stop all collection of information by the App by uninstalling the App using the device’s standard uninstall processes.
Data Retention Policy, Managing Your Information
We will retain User-Provided data for as long as you use the App. In line NHS policies, your information will be retained for 8 years thereafter.
If you’d like us to delete your account and all your User-Provided data, please contact us at email@example.com and we will respond within 28 days. Please note that deleting your account and all of your User-Provided data will mean that you will need to register a new account to use the App.
The Apps have been developed, and are maintained, by Advanced Digital Innovation (UK) Ltd, a company that is accredited to process NHS patient information securely. The Apps store information on computer servers located at an NHS-accredited data centre in England.
The servers communicate with your browser, or the Apps installed on your smartphone or tablet over the internet using a secure, encrypted (https) connection – the same security technology as when you browse a secure website.
If you are using a browser to use the Apps, no information is stored on the computer after you logout and close the browser.
If you are using the Apps installed on your smartphone or tablet, your information is encrypted and stored on your device so that you have access to it even without an internet connection. You are strongly recommended to set a screen lock on your device to prevent someone else viewing your information; as long as you do this, your data is protected by the hardware security functions within your device.
By PainSense apps, you are consenting to the to our processing of your information as set forth in this Privacy Notice. “Processing” means using or touching information in any way, including, but not limited to, collecting, storing, deleting, using, combining and disclosing information. All of these activities will take place in the UK.
You are entitled to a copy of all information about you held within the app, and to have any incorrect information corrected. If, having registered to use the app, you later decide that you no-longer wish to use it, you are also entitled to have your account removed – this will not affect your health record stored in your healthcare providers computer systems, or the treatment that they offer you.
For users referred by a healthcare provider, please contact your provider.
For private purchase users, please contact:
Advanced Digital Innovation (UK) Ltd
If you have any questions regarding privacy while using the App, or have questions about our practices, please contact us via email at firstname.lastname@example.org.
ADI Health is a trading name of Advanced Digital Innovation (UK) Ltd, UK company registration no. 8181398.
Your right to lodge a complaint
If you feel that we have not dealt with your requests properly, or you have other concerns about the way in which we are using your personal information, you can contact the ICO:
Information Commissioner’s Office
Tel: 0303 123 1113