GDPR compliance

Important information from Radiant Balance Inc. (hereunder referred to as RBI) regarding new EU data regulation From 25.05.18, every organisation within the EU and EEA is to adhere to a new set of data privacy laws known as the General Data Protection Regulation or GDPR for short. This comprehensive legislation has been designed to harmonise data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organisations across Europe approach data privacy. We do want to reassure that, prior to the implementation of GDPR, RBI and its associated suppliers, Nordic and F365, have been committed to protecting all our customers data at all times, ensuring complete confidentiality of patient laboratory results, as well as any prescriptions made through the online portals used by RBI.

How will this affect me and my dealings with RBI?

GDPR impacts four main areas in relation to RBI:

1. How we communicate with you

2. How we manage your data

3. How we manage laboratory tests

4. How we use your data

1. How we communicate with you: Whether you have done so in the past or not, we will be asking all our users to tell us if they wish to receive information from us beyond the communications required to deliver our service to you. Prior to GDPR being implemented we will send our users an email asking them to opt in to the information we send. All email communications that contain sensitive data will also be encrypted using SecureMail on Google chome and the email address shania@radiantbalance.secure-comm.com

2. How we manage your data: The new legislation requires we ensure that you can:

1. Always see any data related to you on our system

2. Manage and update this data as you see fit, including partial or complete deletion of any and all personal data records. This however can only be done after 7 years as it is a legal requirement for medical documents to be stored for 7 years.

3. How we manage laboratory tests: From 25.05.18, all test data will be 100% anonymised. To ensure the integrity and success of this comprehensive anonymisation process we are upgrading our SQL servers for enhanced data security. We will also implement changes to our systems in regard to data storage segregations, which means storing data in different places/different servers with anonymisation. Test result files will be moved and saved in a different and separate location.

4.How we use your data: Your data is used solely for the purpose of understanding the root cause of your health issues. At no point is your data shared with anyone. Should you request in writing, that we share information, then we will, but only with express permission from you. We endeavour to keep your data secure on all platforms and have ensured our suppliers are GDPR compliant. Thanks for reading this far - we appreciate it’s a lot of information to take in! The steps outlined above apply only to the impact of GDPR at RBI and your relationship to us. As such, GDPR, raises many questions; questions we will of course be more than happy to answer as and when they arise - just get in touch as you see fit. If you opt in to the newsletter you will receive an email asking you to confirm your opt in, without this email being validated you will not be added to any mailing list.