GENDIA is compliant with the new European Privacy legislation referred to as GDPR (General Data Protection Regulation).
In order to ensure maximal protection of patient information GENDIA nor its test labs nor its customers (referral labs, physicians, midwives, patients) use patient names linked to personal information, and work with patient codes in stead of patient names. Therefore, at all time personal information is pseudonimised.
Customers therefore can never submit patient names linked to personal data to GENDIA. Should such data are submitted to GENDIA, GENDIA will delete these from all its IT and PC systems. As no such data are recorded and stored at GENDIA, GENDIA can also not transmit any personal data linked to patient names to its test labs.
WHAT IS GDPR ?
The GDPR (General Data Protection Regulation) is the new European privacy legislation that entered into force on May 25, 2018. The GDPR automatically applies to individuals and companies that process personal data for professional use, and must ensure that they process all personal data GDPR-compliant.
GENDIA (GENetic DIAgnostic Network) is a center that offers genetic advice (genetic counseling) and genetic testing.
GENDIA receives personal information and a sample (blood, saliva, mouth swap, DNA) from the patient that is submitted by the client, which can be the patient himself as well as the doctor or laboratory of the patient.
GENDIA submits this sample with limited clinical information on the patient to its testlabs to perform genetic testing.
PERSONAL INFORMATION AND SAMPLES
WHAT PERSONAL INFO IS COLLECTED?
GENDIA itself does not actively collect patient-related data.
All personal data that GENDA has in its possession are submitted by its clients (doctors, midwives, laboratories and patients) via the submission form(s).
The submission form contains the following personal information:
- Administrative information concerning the patient:
- Patient code (no patient name)
- Date of birth
- Place of residence (only when the patient is the client)
- Telephone (only when the patient is the client)
- Email (only when the patient is the client)
- Administrative information concerning the doctor, midwife or laboratory of the patient:
HOW DOES GENDIA PROCESS PERSONALIZED INFO?
In summary, GENDIA processes the personal data exclusively for the generation of:
- A submission form to the test laboratory that carries out the genetic test at the request of GENDIA
- An invoice that GENDIA addresses to the client
- A result letter addressed exclusively to the client and, if requested by the client, the care provider (doctor or midwife)
DOES GENDIA PROVIDE PERSONAL INFORMATION TO THIRD PARTIES?
GENDIA will only send personal data to:
- The patient
- The care provider specified by the client on the submission form
- The test laboratory that carries out the genetic test at the request of GENDIA
ACCESS TO PERSONALIZED INFO
PSEUDONIMISATION OF SAMPLES
GENDIA pseudonises all its patients’ samples by:
- asking the clients (doctors, laboratories and patients) not to take patient names but to use patient codes in all documents containing clinical information (including the submission forms)
- on the submission form (which the clients send to GENDIA together with the sample) no patient names but patient codes need to be filled in
- if the client (doctors, laboratories and patients) still uses a patient name GENDIA replaces the patient name with a patient code on all documents where a patient name is linked to clinical information (submission forms, lab results, GENDIA reports) by replacing the patient name with a GENDIA code: year, followed by a 5-digit number: eg 2018.03458).
CUSTOMER RIGHTS ON INSPECTION, ADJUSTMENT AND REMOVAL OF PERSONAL INFO
The personal data processed for customer management will be retained for the period necessary to comply with legal requirements (including in the field of accounting).
Right of access, correction, erasure, restriction, objection and transferability of personal data
The customer has the right to inspect his personal data at all times and can have them removed or corrected if they are incorrect or incomplete. In addition, the customer has the right to obtain a copy (in a structured, current and machine-readable form) of his personal data and to have the personal data forwarded to another company. In order to exercise the above rights, the customer is asked to send an e-mail to the following e-mail address: info@GENDIA.net
The customer has the right to file a complaint with the Commission for the Protection of Privacy (Drukpersstraat 35, 1000 Brussels – email: firstname.lastname@example.org).
GENDIA cvba has the following websites:
The general terms and conditions applicable to the websites are described in the GENDIA disclaimer, published on the GENDIA websites. By accessing and using one of our websites, the client expressly agrees to these terms and conditions.
GENDIA works within the secure IT network of AML (www.aml-lab.be)