Privacy Policy
At 101 testing, we respect privacy and are committed to protecting personal data, which is why we have put in place a comprehensive privacy policy in adherence with the UK General Data Protection Regulation (UK GDPR) tailored by the data protection act 2018.
Personal Data
Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data)
Information about a deceased person does not constitute as personal data and therefore is not subject to the UK GDPR.
Automated data collection
In addition to the above-mentioned data, 101 Testing collects through its portals or via its working partners, we may collect IP address, cookies, usage data, unique device identifiers for advertising (Google advertiser ID or IDFA).
101 Testing only processes information having obtained consent from the customer, prior to receiving personal data, for the provision of its services that have been requested or purchased.
PHC information Retention
The data may be processed and stored for as long as is necessary to carry out our contractual obligations to the customer.
Personal Data collected for the purposes of 101 Testing’s legitimate interests shall be retained as long as needed to fulfil such purposes.
In some circumstances 101 Testing may anonymise personal data (so that it can no longer be associated with the customer) for research or statistical purposes in which case we may use this information indefinitely without further notice to the customer.
101 Testing understands the importance of protecting our customers data and takes appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.
The Data processing is carried out at 101 Testing’s operating offices and in any other place where the parties involved are operating from in a safe and secure manner. It is processed using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated within this data protection policy.
Internal handling
At 101 Testing, data is made accessible to verified individuals in charge, within the organisation for the sole purpose of conducting the service requested/ purchased.
These will include persons in the 101 Testing’s operating teams working in administration, sales, marketing and legal.
Externally with our partner Laboratories
The service 101 Testing provides is solely to aid in the testing process by providing the customer with the test. The test Swabs are processed by Laboratories. 101 testing only partners with UKAS accredited and CQC commissioned laboratories.
101 testing only shares relevant information with external parties (third-parties) such as technical service providers, mail carriers, hosting providers, IT companies & communications agencies; on a strictly necessary or relevant basis for the purposes of processing and delivering the customers results.
101 Testing is required to share all results with Public Health England (PHE) in line with the current Government regulations.
Furthermore, please be advised that the Metropolitan police may lawfully request access to Individuals data, in which case 101 testing is legally obliged to share the individuals’ data with them.
Information if it is going to transfer the data overseas, including the country involved and what will be done with the data.
101 Testing does not transfer any personal data over seas.
Customers have the right to receive a copy of their personal data and any other supplementary information; in an easily legible, concise and intelligent format; which will be disclosed to the customer in a secure way.
Deleting data
Customers have the right to ask us to delete personal data we hold about the customer:
Where we no longer need personal data for the purpose for which we collected it
Where we have collected personal data on the grounds of consent, and the customer withdraws that consent
Where the customer objects to the processing and we don’t have any overriding legitimate interests to continue processing the data
Where we have unlawfully processed personal data (i.e. we have failed to comply with GDPR); and where the personal data has to be deleted to comply with a legal obligation.
Right to restrict processing
Customers are entitled to ask 101 Testing to suppress processing of personal data. This means we will stop actively processing personal data, but we don’t have to delete it. This right is available to the customer:
If the customer believes the personal data we hold isn’t accurate – we will cease processing it until we can verify its accuracy
If the customer have objected to us processing the data – we will cease processing it until we have determined whether our legitimate interests override objection
If the processing is unlawful; or if we no longer need the data but the customer would like us to keep it because the customer needs it to establish, exercise or defend a legal claim
Data portability
The customer has the right to ask us to provide personal data in a structured, commonly used and machine-readable format so that the customer can transmit the personal data to another data controller. This right only applies to personal data provided to us:
Where processing is based on consent or for performance of a contract (i.e. the right does not apply if we process personal data on the grounds of legitimate interests); and where we carry out the processing by automated means
Right to object
Customers are entitled to object to us processing personal data, if the processing is based on legitimate interests or performance of a task in the public interest or exercise of official authority.
Legal Information
This privacy policy has been prepared based UKGDPR data protection act 2018 and relates solely to 101 Testing
This policy was last updated on 23rd March 2021