Book Online Instant appointments available Make an Enquiry We’ll respond quickly Chat on WhatsApp Fastest response

Privacy Policy

(Isle of Man – Applied GDPR)

PATIENT SOLUTIONS LIMITED Last updated: 17 May 2026

1. Introduction

This Privacy Notice explains how Patient Solutions Limited (“Patient Solutions”, “we”, “us” or “our”) collects, uses, shares and protects personal data in accordance with Isle of Man Data Protection Legislation.

Isle of Man Data Protection Legislation includes:

  • The Data Protection Act 2018
  • The Data Protection (Application of GDPR) Order 2018
  • The GDPR and LED Implementing Regulations 2018

(together referred to as the Applied GDPR).

2. Data Controller

Patient Solutions Limited is a data controller for the purposes of the Applied GDPR in respect of the personal data described in this notice.

Contact details:

Data Protection Officer: patients@patientsolutions.im

Address: 21 Thirmlere Avenue, Onchan, Isle of Man

Telephone: +44 (0)333 358 4990

3. Scope of This Notice

This Privacy Notice applies to:

  • Patients and prospective patients
  • Individuals whose personal data we receive in connection with healthcare services
  • Representatives or next of kin where relevant

This notice does not replace the privacy notices of independent healthcare professionals involved in your care.

4. Independent Healthcare Professionals

Healthcare professionals involved in your care (including consultants, GPs, nurses and other clinicians) may act as independent data controllers for personal data processed within their own clinical records.

Where this applies:

  • They are responsible for compliance with data protection legislation
  • They will provide you with their own privacy information

5. Personal Data We Process

We are a private healthcare provider offering the following services:

  • General Practitioner and Dental Services
  • Community Healthcare
  • Hospital Healthcare
  • Mental Healthcare
  • Health and Wellbeing Services
  • Occupational screening
  • Specialist off‑Island care

5.1 Personal Data

We may process the following categories of personal data:

  • Name, address, date of birth, age and contact details
  • NHS number
  • Insurance and referral details
  • Occupation
  • Emergency contact and next‑of‑kin details
  • Financial and payment information
  • Images, including clinical images and CCTV footage (where applicable)

5.2 Special Categories of Personal Data

We may also process special category personal data, including:

  • Information relating to your physical or mental health
  • Clinical records, diagnoses, test results and treatment information
  • Prescribed or administered medication
  • Previous healthcare received
  • Medical negligence allegations and investigations
  • Genetic or biometric data (where clinically relevant)
  • Information about race or ethnicity, religion, sex life or sexual orientation where necessary for your care

Special category data is processed only where lawful and necessary.

6. How We Collect Personal Data

6.1 Directly From You

Including when you:

  • Engage our services
  • Attend consultations (in person, remote or telephone)
  • Complete forms or correspond with us
  • Communicate by email, telephone or social media (calls may be recorded)
  • Participate in surveys or service improvement activities

6.2 From Third Parties

Including:

  • GPs, consultants, hospitals, Manx Care and NHS bodies
  • Mental health providers
  • Insurers
  • Legal representatives
  • Family members (where appropriate)
  • Government departments, courts, police and regulators
  • IT, administrative and professional service providers

7. Purposes of Processing

We process personal data to:

  • Create, maintain and manage patient records
  • Arrange and deliver healthcare services
  • Communicate regarding appointments, treatment, results and billing
  • Manage complaints, incidents and medico‑legal matters
  • Monitor and improve quality and patient safety
  • Comply with legal, regulatory and professional obligations

8. Lawful Bases for Processing

8.1 Personal Data – Article 6 (Applied GDPR)

We process personal data where one or more of the following applies:

  • Performance of a contract
  • Compliance with a legal obligation
  • Legitimate interests (except where overridden by your rights)
  • Consent (where required)
  • Public interest or official authority

8.2 Special Category Data – Article 9(2)

Including:

  • Article 9(2)(h): Provision and management of health or social care
  • Article 9(2)(f): Establishment, exercise or defence of legal claims
  • Article 9(2)(a): Explicit consent (where applicable)

9. Summary Care Records

Where relevant, authorised healthcare professionals may access your NHS Summary Care Record unless you have opted out.

Further information:https://digital.nhs.uk/services/summary-care-records-scr

10. Communications

We may contact you by telephone, SMS, email or post to:

  • Provide information about your care
  • Send appointment reminders and clinical updates
  • Issue invoices and payment communications
  • Invite you to patient experience or outcome surveys

You may opt out of non‑essential communications at any time.

11. Patient Travel and Transport

Our partner organisation Mann Link Travel provides off‑Island patient travel services. We may share relevant personal and health information with Mann Link Travel in order to coordinate safe and appropriate travel and accommodation.

Privacy notice: www.mannlink.com

Lawful bases:

  • Article 6(1)(b) – Performance of a contract
  • Article 6(1)(e) – Task in the public interest
  • Article 9(2)(h) – Provision of health or social care

12. Data Sharing

We share personal data only where necessary, including with:

  • Healthcare professionals and service providers
  • Laboratories and diagnostic services
  • Insurers and legal advisers
  • IT and administrative service providers
  • Regulators, courts and law enforcement bodies

All recipients are required to process data securely and lawfully.

13. Data Retention

Personal data is retained only for as long as necessary.Health records are generally retained for up to 30 years in line with professional, legal and medico‑legal requirements.

Retention periods are guided by the NHS Records Management Code of Practice and other relevant guidance.

14. Data Security

We apply appropriate technical and organisational measures to protect personal data and comply with:

  • The common law duty of confidentiality
  • The Caldicott Principles
  • Professional standards and guidance

Cookies and Similar Technologies

What Are Cookies?

Cookies are small text files placed on your device when you visit our website. They help us recognise your device, remember preferences, and improve website performance.

Why We Use Cookies

Cookies are used to:

  • Ensure website functionality and security
  • Remember preferences
  • Analyse website usage
  • Improve performance and experience
  • Support security and fraud prevention
  • Measure content effectiveness

We do not collect personally identifiable data via cookies unless you choose to provide it.

Types of Cookies Used

  • Strictly Necessary Cookies – essential for site operation
  • Performance & Analytics Cookies – improve site functionality
  • Functionality Cookies – remember preferences
  • Targeting / Advertising Cookies – used only with consent

Legal Basis for Cookies

  • Legitimate interests for essential cookies
  • Consent for all non‑essential cookies

You may withdraw consent at any time.

Managing Cookies

You can manage cookie preferences via our website or through your browser settings. Disabling certain cookies may affect functionality.

Third‑Party Cookies

Some cookies are placed by third‑party providers (e.g. analytics or embedded content). Please review their policies for further information.

Cookie Storage Duration

  • Session cookies expire when you close your browser
  • Persistent cookies remain until they expire or are deleted

15. Your Rights

You have the right to:

  • Access personal data
  • Request correction
  • Request erasure (where applicable)
  • Restrict processing
  • Object to processing
  • Data portability
  • Withdraw consent at any time

16. Complaints

If you are dissatisfied with our processing of your data, you may:

  1. Contact our Data Protection Officer; and
  2. Lodge a complaint with the Isle of Man Information Commissioner.

17. Changes to This Notice

We may update this Privacy Notice from time to time. The latest version will always be available.

Travel and Accommodation – Additional Information

Patient Solutions works with Mann Link Travel to arrange travel and accommodation where required. Mann Link Travel processes relevant personal and health information to ensure patient safety and wellbeing.

Data may include:

  • Name, date of birth, address, contact details
  • Identification and insurance information
  • Gender and age
  • Mobility and medical requirements
  • Dietary requirements
  • Details of accompanying persons

Mann Link Travel is required to:

  • Maintain accurate records
  • Keep information confidential and secure
  • Dispose of data appropriately
  • Provide access to information upon request

Mann Link Travel is registered with the Information Commissioner.

Contact Us

For further information or to exercise your rights, contact:

Data Protection Officer

Website: www.patientsolutions.im

Telephone: 0333 358 4990

Address: 21 Thirlmere Avenue, Onchan, Isle of Man

Patient Solutions is a non-clinical healthcare navigation service designed to guide you through Manx Care, private, and UK healthcare options – helping you access the right care, at the right time.

ServicesTechnologyHub
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Links

Home
About Us
Our Packages
Information for Patients
Join as a Specialist
Contact Us

Solutions

Executive Solution
Premium Solution
Core Solution

Contact Us

Contact Us
0333 358 4990
patients@patientsolutions.im
Isle of Man
Complaints Policy
Terms & Conditions
Privacy Policy
Copyright © Patient Solutions. All Rights Reserved
Website by PDC Creative