Registered name: Aneira Health Limited. Reg number: 15210257
Registered Office: 20 Eastbourne Terrace, Paddington, London W2 6LG
This privacy notice tells you what to expect us to do with your personal information.
Welcome to Aneira Health UK Limited. Our registered office is 20 Eastbourne Terrace, Paddington, London, W2 6LA. Company reg no is 15210257
We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use and protect your personal data in compliance with the General Data Protection Regulation (GDPR).
Our service offers Women’s health assessments, consultations, information and guidance in physical and online locations. We are a research focused organization and will collaborate with internal and external parties to develop globally relevant research which has an impact on women’s health.
This Privacy Policy covers how we treat Personal Data that we collect when you access our app or website to create an account, share data with us, access our Services, take part in research or pay a fee for those Services.
Personal Data is any information that relates to an identified or identifiable living individual. Different pieces of information, which collected together can lead to the identification of a particular person also constitute personal data.
Personal data that has been de-identified, encrypted or pseudonymised but can be used to re-identify a person remains Personal Data. Personal data that has been rendered anonymous in such a way that the individual is not or cannot be identified is no longer considered personal data. This type of data is called anonymous. This privacy statement will tell you when we are anonymising data.
This is information about you which we use to create and manage your account. It can include your name, address, contact details and bank details.
We will use this data to:
We will keep this data for 8 years after you have ceased to be a member.
This is information about you which we use to keep in touch. It can include your name, address, contact details and information you have shared about your contact preferences and availability.
We will use your contact details to:
If you have consented to Marketing communications, we will send you these updates from Aneira Health.
If you become a participant in interventional research at one of our sites, the Sponsor of the research will tell you about how they will manage your Personal Data and how long they are required to hold your Personal Data.
Self reported healthcare data (on the Aneira app)
This is the information we will ask you to provide when you sign up such as:
We will use this data to:
Healthcare data from clinical care and testing
This is the information which you will provide to our health care professionals when you speak with us face-to-face or on video calls or telephone calls.
We will use this data to provide tailored clinical care to you.
Healthcare data from your existing healthcare records
This is all the coded information which your GP and the hospital systems hold about you. It does not include notes and letters. It will include some or all of the following:
Samples
As part of joining Aneira Health and during any clinical care with us, we will take clinical samples to better understand your health status. This includes genotyping using a blood sample. These samples may be blood, urine, or tissue. The processing of these tests is done by our laboratory providers. The laboratory will receive the following information about you:
We will store some of the samples for quality checks and an additional amount for future research. This will be stored anonymously for a minimum of 10 years.
Results of tests
These are the results of laboratory tests. These will be laboratory values linked to your patient identification number which we will match to your record in our electronic health record system. The laboratory cannot identify you from this information.
During your care we may ask you to consent to share data from devices such as smart watches or blood pressure monitors. We will receive the data from the manufacturers’ data management systems which is then transferred to our systems.
We will use this data to help inform our understanding of your health and to enable us to treat you appropriately.
The results of laboratory tests will be held by the laboratory for no more than 3 months and will then be deleted. They may be required to use the anonymous results to audit the quality of their systems.
Any unused blood or tissue samples are destroyed by the laboratory on a routine basis.
Your personal device manufacturers can hold anonymised data and you need to provide your permission on the system to allow this.
Your health care data will be stored for 8 years after you cease to be a member unless we inform you otherwise.
Sharing data
Where the data relates to clinical care, we will ask you to acknowledge that we can share this information with your GP or other care provider. You can opt out. Talk to your care team at Aneira Health about this.
How will we use data for research?
Aneira Health is committed to robust scientific research. All anonymised data we collect about you, your health and the information you give us will become part of our mission to improve health outcomes for women.
We will retain your data in anonymous format to enable us to analyse and improve our Services, to carry out scientific research and develop machine learning and AI models to improve our understanding of women’s health conditions.
Research
We will use your anonymous data including:
Part of your post code; GP site; year and month of birth; age; sex; healthcare data ; survey and questionnaire data.
We will work with trusted partners to carry out research on the anonymised data.
All research projects are overseen by our Research Ethics Advisory Group which includes patients, external experts, scientists, doctors, data scientists and a data protection officer.
We will never sell your anonymised data.
How we will use data to provide a Service?
Payment information
This data is essential to enable our payment provider(s) (see table) to process payments. The Data captured by our payment provider(s) and stored and processed by us may include:
Name; email address; postcode; card information; country of residence
We keep this information for as long as the tax authorities require. Once we no longer need this information, we will delete it.
Communication
Where we communicate with each other via any method – chat, phone calls, texts, email or transcriptions of face-to-face conversations – we will keep that information in identifiable form for as long as you are a member.
Only members of the clinic team, those booking appointments and meeting you at clinic reception will be able to view this information.
We will use this data to provide the Services to you including clinical care.
Employment and hiring
If you apply for a job with Aneira Health – good choice.
We will collect:
Name; contact details; your CV; references
We will retain information about you for 6 months after an unsuccessful application.
Data Controller
Aneira Health UK Limited is the data controller responsible for the collection and processing of personal data under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 (DPA18).
Data Processors
The data we collect is processed by the following organisations for the purposes described:
Data Security
The security of the data you share with us is important to us. We take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your provided personal data. All data provided to us is stored on our secure (password and firewall protected) servers. All electronic data associated with transactions you make or in relation to our website is encrypted.
We also allow access to your personal data only to those employees and partners who have a business need to know such data. They must keep it confidential and are under a contractual obligation to do so.
We have procedures in place to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach if we are legally required to.
Data Retention
The data we collect from you will be retained only for as long as necessary to fulfil the purposes we collected it for. This will include the purposes of satisfying any legal, accounting, or reporting requirements.
In some circumstances, we may anonymise your personal data for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Your personal identifiable healthcare data is processed and stored on the information systems listed under Data Processors. Where those systems are outside the UK or EU we ensure that they are compliant with EU legislation and guidance.
International transfers of data
We work with research partners and will transfer anonymised data outside of the UK. These data cannot be linked back to you. The data will only be used for healthcare research and to train and develop models.
Changes to this policy
We may make changes to this policy from time to time. We will notify you when changes are made via the member portal and by your chosen form of communication.
We process your personal data based on the following legal grounds:
When we rely on consent, we will use your information on this basis until you withdraw your consent, or it can be reasonably assumed that your consent no longer exists. You may withdraw your consent at any time by instructing us at hello@aneira.health or by speaking to our clinic team.
Under certain circumstances, by law you have the right to:
If you want to know more about your rights, please take a look at the ICO website.
If you want to exercise any of your rights listed above, please email php@informationgovernanceservices.com.
Before we release any information to you, we may request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
We respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
You can contact us at: php@informationgovernanceservices.com
Version 1.2. Aneira Health Inc. 2024
Last updated 11th April 2025