At ODL, we take our responsibilities regarding the protection of customer information very seriously and are committed to protecting your privacy, keeping your data safe and not doing anything with it that you wouldn’t reasonably expect.
You have the right to make a complaint at any time in the UK/EU this would be to the Information Commissioner's Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk).
We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
If you have any questions or comments regarding this policy, please email firstname.lastname@example.org.
Omega Diagnostics Ltd (registered in Scotland with company number SC107178) which is part of the Omega Diagnostics Group PLC registered in England and Wales with company number 5017761.
Omega Diagnostics Ltd is focused on selling a wide range of specialist products, primarily in the immunoassay, in-vitro diagnostics (IVD) market within two segments:
Our Mission is to improve human health and well-being through innovative diagnostic tests and global partnerships.
Omega Diagnostics Ltd is responsible for your personal data.
We have appointed a data protection officer (DPO) who is responsible for overseeing questions in relation to this Policy. If you have any questions about this Policy, including any requests to exercise your legal rights, please contact the DPO using the details set out below.
Email address: email@example.com
The company has three offices one in Scotland (HQ), England and India:
Omega Diagnostics Ltd. (HQ),
Hillfoots Business Village,
Alva FK12 5DQ
T: +44 (1259) 763030
Omega Diagnostics Ltd. (CNS & Genesis Diagnostics),
Eden Research Park,
Henry Crabb Road,
Littleport CB6 1SE
T: +44 (1353) 862220
Omega Dx (Asia) Pvt Ltd.
508, 5th floor,
Western Edge I,
Western Express Highway,
Mumbai 400 066,
T: +91 (22) 28702251
Personal data or information means any information that can be used to identify you. For example, it can include information such as your name, date of birth, email address, postal address, telephone number, payment details as well as information relating to your general health.
We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
We collect your personal information through a number of different sources:
We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.
We may retain your personal data for a longer period where such retention is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person, or in the event of a complaint, or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.
Once your account is dormant we will retain your data as follows:
In some circumstances we will anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes. As you cannot be identified this data is not subject to GDPR in which case we may use this information indefinitely and will not need to inform you.
Serum and Plasma samples are stored frozen and retained for no longer than a period of 1 month in our laboratory in Littleport, in accordance with the Royal College of Pathologists Guidelines. Additional testing or retests will only be performed upon specific request by the client. Samples will be disposed of after this period by incineration.
Payment card details received over the phone, by post or at seminars and exhibitions are either processed at point of receipt or at our Littleport office. All payment card details are securely destroyed after payment has been made.
We also adhere to the Payment Card Industry Data Security Standards (PCI-DSS), see Digital Services.
When you use a social media platform and interact with CNS, you do so by consenting to the terms & conditions of such platforms. This can include Facebook, Twitter, Instagram, LinkedIn, Pinterest, YouTube and Google+. For more information, please see their individual Terms & Conditions and privacy policies.
eNewsletters | Marketing
We will send you marketing emails and newsletters to keep you updated on our products and services. You can at any time opt out of receiving these emails.
Our applications, platforms and website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements when you leave our website, we encourage you to read the privacy notice of every website you visit.
From time to time, CNS will carry out surveys to collect information from suppliers, practitioners and consumers to establish areas for improvement and quality monitoring.
In most cases Survey Monkey will be deployed for such activities.
SurveyMonkey Inc. participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield. SurveyMonkey is committed to subjecting all personal information and data received from European Union (EU) member countries and Switzerland, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List. https://www.privacyshield.gov/ or visit (https://www.surveymonkey.co.uk/mp/legal/privacy-policy).
Your credit card data is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted. All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.
We log visitors' domain and IP address automatically; this information does not identify you as an individual, but only the computer that is being used to view the site.
This data is used to see where the site is being used in the world to ensure coverage, and for click stream analysis to help better understand site usage, so that we can improve our service to you. We do not link information automatically logged by such means with personal data about specific individuals.
What is a Cookie?
A Cookie is a small text file which are stored on a user's computer. They are designed to hold a modest amount of data specific to a particular user and website.
Cookies are a convenient way to carry information from one session on a website to another, or between sessions on related websites. This makes your visit to our site smoother. It also remembers your preferences and allows us to customise your experience.
Cookies also allow us to monitor and measure how visitors engage with our website. We can discover what areas of the site are popular, how often visitors return, have they accessed the website from a desktop computer or a mobile device and so on. By understanding this information, we can improve and enhance the customer journey in the future.
If you choose to opt out of accepting our Cookies, some functions may appear broken because of the way our site operates. Please understand that your experience may not be as smooth or as enjoyable as we aim to deliver to all of our visitors though the overarching site will continue to work.
If you still decide to opt out, you have two options:
You can adjust the settings on your internet browser to prevent cookies being downloaded. How this is done varies according to which browser you are using, and we recommend you refer to the appropriate online help guides.
You can opt out of receiving specifically those cookies we use to track how people are using our site. Details of how to disable the Google Analytics cookies can be found on our Cookie Page.
There are two types of Cookie:
Session Cookies are temporary. They allow ODL to link the actions of a user during a browser session. A browser session starts when a user opens the browser window and finishes when they close the browser window. Once you close the browser, all session cookies are deleted.
These cookies are set on your first visit to the ODL website. They last longer than the duration of your stay and are used to help us understand which parts of our sites are regularly visited and how we can improve the service we deliver.
Cookies also have, broadly speaking, four different functions and can be categorised as follow: ‘strictly necessary’ cookies, ‘performance’ cookies, ‘functionality’ cookies and ‘targeting’ or ‘advertising’ cookies. ODL will use the term ‘Targeting’ when describing this function.
Strictly Necessary cookies are essential to navigate around the ODL websites and use its features. Without them, you wouldn’t be able to use basic services like registration or the shopping basket. These cookies do not gather information about you that could be used for marketing or remembering where you’ve been on the internet.
Performance cookies collect data for statistical purposes on how visitors navigate the ODL websites; they don’t contain personal information such as names and email addresses and are used to improve your user experience of our website.
Functional cookies allow our visitors to customise how our website looks for them: they can remember usernames, language preferences and regions. On other websites they can be used to provide more personal services like local weather reports and traffic news.
Targeting cookies are used to deliver advertisements more relevant to you but can also limit the number of times you see an advertisement and be used to chart the effectiveness of an ad campaign by tracking users’ clicks. They can also provide security in transactions.
To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org.
To opt out of being tracked by Google Analytics across all websites, visit http://tools.google.com/dlpage/gaoptout.
To find information relating to other browsers, visit the browser developer's website.
We also log visitors' domain and IP address automatically; this information does not identify you as an individual, but only the computer that is being used to view the site. This data is used to see where the site is being used in the world to ensure coverage, and for click stream analysis to help better understand site usage, so that we can improve our service to you. We do not link information automatically logged by such means with personal data about specific individuals.
We may share your personal data with 3rd parties for the purpose of providing our services and products or if we are required to by a regulatory requirement. For example sharing test results of infectious diseases like COVID-19 testing with PHE. Some of our tests may also be processed by third party companies with whom we will share your personal data. Our authorised data processors are subject to comprehensive due diligence in-line with current data protection legislation.
When acting as our authorised data processors, our service providers are required to only process data in accordance with our instructions, in line with this Policy, and are subject to appropriate confidentiality and security obligations.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Some of the steps we use to protect your information from unauthorised access, use or alteration and unlawful destruction, include where appropriate:
Under the General Data Protection Regulations, you have rights as an individual which you can exercise in relation to the information, we hold about you.
We commit to ensure that any data we process is correct and up to date. It is your obligation to make us aware of any changes to your personal information.
In some situations, you may have the;
Individuals can find out if we hold any personal information by making a 'right of access' request. More information can be found at https://ico.org.uk.
If we do hold information about you, we will:
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we could refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.
Omega Diagnostics Ltd is the data controller for the information you provide during the recruitment process unless otherwise stated. If you have any queries about the process or how we handle your information, please contact us at the above address or by email: firstname.lastname@example.org
What will we do with the information you provide to us?
All of the information you provide during the process will only be used for the purpose of progressing your application, or to fulfil legal or regulatory requirements if necessary.
We will not share any of the information you provide during the recruitment process. The information you provide will be held securely by us whether the information is in electronic or physical format.
We will use the contact details you provide to us to contact you to progress your application. We will use the other information you provide to assess your suitability for the role you have applied for. Our legal basis for processing this information is legitimate interest.
What information do we ask for, and why?
We do not collect more information than we need to fulfil our stated purposes and will not retain it for longer than 3 months following the conclusion of the recruitment process. We will then destroy this data confidentially for any unsuccessful candidates.
The information we ask for is used to assess your suitability for employment. You don’t have to provide what we ask for, but it might affect the progression of your application to the next stage if you don’t.
Our hiring managers shortlist applications for interview. If you are shortlisted for interview you will be required to bring photographic identification usually a passport to confirm your rights to work in the United Kingdom. The information will be retained on file for 6 months following the conclusion of the recruitment process. We will then destroy this data confidentially for any unsuccessful candidates.
If we make a conditional offer of employment, we will ask you for information so that we can carry out pre-employment checks. You must successfully complete pre-employment checks to progress to a final offer. We are required to confirm the identity of our staff, their right to work in the United Kingdom and seek assurance as to their trustworthiness, integrity and reliability.
You will therefore be required to provide:
If we make a final offer, we will also ask you for the following: