By using this website or providing data to TXM Healthcare, individuals can be assured that their information will be handled in accordance with this Policy.

TXM Healthcare may update this policy periodically, and any amendments will be reflected on this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from 19th February 2018 and is reviewed annually.

Who is the Data Controller?

TXM Healthcare Ltd

In this document TXM Healthcare may be referred to as “The company” “TXM Healthcare”, or “The Organisation”.

Information Collected

The following categories of personal data may be collected:

• Name and job title
• Contact information including email address and telephone number
• Demographic information such as postcode, preferences and interests
• Timesheet data
• Identification documents
• Health and occupational health data (where relevant)
• Other information relevant to surveys, feedback or service delivery.

Purpose and Legal Basis for Processing Personal Data

TXM Healthcare processes personal data only where there is a lawful basis to do so, as outlined below.

Contractual Obligations

Personal data is processed where necessary to fulfil contractual obligations. Where specific information is required to enter into or perform a contract, failure to provide it may prevent the company from delivering the requested goods or services.

Legal Obligations

Personal data may be processed to meet statutory and regulatory requirements, including but not limited to, financial, regulatory, due diligence, and fraud prevention purposes.

Consent

Where consent is required, it will be freely given, specific, informed, and unambiguous. This may include but is not limited to health data.

Legitimate Interests

Personal data may be processed to pursue the Company’s legitimate business interests, including communication, marketing, research, analysis, and operational improvements.

Sources of Personal Data

We collect personal data through various channels. This could include:

• Direct submission via forms, applications or communications with TXM Healthcare representatives.
• Automatic collection via cookies and analytics tools when using online platforms.
• Third-party sources such as job boards, recruitment platforms, LinkedIn, or social media.

Data Security

TXM Healthcare is committed to ensuring that all personal data is secure. Appropriate, physical, electronic, and managerial measures have been implemented to prevent unauthorised access, alteration, or disclosure.

Links to other websites

The TXM Healthcare websites may contain links to third-party websites. Please note TXM Healthcare has no control over, and is not responsible for, the privacy practices of such sites. Users are encouraged to review the privacy statements of any external sites visited.

Sharing of Personal Data

To achieve the purposes stated above, personal data may have to be shared with trusted third parties. This may include service providers and business partners necessary for operational delivery, or regulatory and law-enforcement authorities where required by law. We will make all reasonable efforts to ensure that all third parties are contractually obligated to handle personal data in compliance with data protection legislation and to implement appropriate security measures.

International Data Transfers

As part of standard business operations, personal data may be transferred to organisations located in countries outside the European Economic Area (EEA) that have not been granted an adequacy decision under the General Data Protection Regulation (GDPR). In such circumstances, appropriate safeguards or lawful derogations will be implemented to ensure the protection of personal data. These measures may include:

• Transfers that are necessary for the performance of a contract;
• Transfers made with the explicit consent of the data subject, following notification of any potential risks; or
• Transfers carried out under contractual arrangements with recipient organisations that require the maintenance of data protection standards equivalent to those required under the GDPR.

All international data transfers are undertaken with a commitment to ensuring that personal data is handled securely and in compliance with applicable data protection legislation.

Data Retention

TXM Healthcare will keep your personal data only for as long as required to achieve the purposes for which it is gathered. The following criteria determine the period for which we retain personal data:

• Until we are no longer required to do so to comply with regulatory requirements or financial obligations;
• Until we are no longer required to do so by any law we are subject to; and
• Until all purposes for which the data was originally gathered have become irrelevant or obsolete.

Your Rights, Our Responsibility

The Right of Access

This grants you the right to obtain confirmation of whether your personal data is being processed, and to access the relevant details of what those processing operations are and what personal data of yours is being processed. If you would like access to the personal data TXM Healthcare has about you, please contact us using the details below.

The Right to Rectification

If you notice that the data TXM Healthcare has about you is inaccurate or incomplete, you may request TXM Healthcare rectify the inaccurate or incomplete data. TXM Healthcare will make every effort to respond to requests immediately.

The Right to Erasure

Otherwise known as the ‘right to be forgotten’, you have the right to request your personal data be deleted. However, this is not an absolute right; if a data subject were to request that TXM Healthcare erase personal data, the company would erase as much of that data as possible, but may have to retain some information if it is necessary (e.g., to meet legal obligations). Where retention is necessary, TXM Healthcare shall ensure the remaining data is used only when and where it is necessary.

The Right to Object

If you wish to object to the way TXM Healthcare uses, or has used, your data you may do so freely.

The Right to Complain

TXM Healthcare will always strive to maintain the highest standards and encourage the confidence our customers have in us as an organisation. To achieve this, we request that any complaints be first brought to our attention so we can properly investigate matters. If you would like to complain about TXM Healthcare to a regulatory body, you may do so by contacting your local data protection supervisory authority or the Information Commissioner’s Office.

Requests to exercise these rights should be directed to governance@txmhealthcare.co.uk.

TXM Healthcare Contact Details

TXM Healthcare’s Data Protection Officer