Statica Research Ltd t/a PEP Health Privacy Notice

Our contact details?

Both the company and the named Data Protection Officer – Alex Griffiths - can be contacted via:
(A) Statica Research Ltd t/a PEP Health, 7 Bell Yard, London, England, WC2A 2JR
(E) Enquiries@PEPhealth.ai

What type of information we have ?

We hold online, public feedback concerning healthcare providers. This information is gathered from online review sites and social media. We collect the text of the comments regarding healthcare providers, the date the comments were posted, and the self-chosen username of the person that posted the comment. For twitter only, where available, we also collect the self-completed user bio to automatically determine whether a comment should be excluded from analysis (for example, we exclude feedback from the CEOs of NHS Trusts as this could clearly be biased). We do not collect any other personal information from posters.

In addition, we collect the email address, job title and names of individuals who enter them when they download our reports from our website. This information is held to understand who is interested in our product, and potentially to reach out to them in future.

How we get the information and why we do we have it?

We automatically collect the information from review sites and social media for legitimate business purposes: to monitor the performance of healthcare providers.

By tracking online feedback we can quickly identify areas of good and bad practice and share these with the providers so they can build on or rectify the topics raised. By gathering usernames we can seek to minimise the the influence of individual’s on the overall feedback picture for a provider.

Although all the information we collect is wholly public, we will delete any information we hold on an individual should they request it. To make such a request, please contact us via the details given at the top of this page.

Likewise, the email address, job title and names of individuals who enter them when they download our reports from our website can be removed at any time by contacting us using the details given at the top of this page.

We do not hold data used by third-parties on our behalf, but if you have any concerns over the use of data by third-parties then please contact us using the details given at the top of this page.

What we do with the information?

We track the overall performance of healthcare providers using the reviews and feedback we gather. Algorithms are applied to comments (where there is any associated text) to automatically identify what specific aspects of care the comment relates to, and the departments or services it concerns. Furthermore, tweets are automatically assessed to ensure that they are relevant to the quality of care.

This information, including individual comments, may then be shared with business partners including but not limited to healthcare providers, regulators, commissioners and insurers. Data is not shared outside of the EU.

How we store your information

Information is stored in a secure database hosted on a UK-based server. Back-up copies are stored on an encrypted hard drive. Access to the database is strictly limited to suitably-trained employees who require access.

Your data protection rights

Although all the information we collect is wholly public, we will delete any information we hold on an individual should they request it. To make such a request, please contact us via the details given at the top of this page.

How to complain

If you wish to discuss our use of data, please contact us via the details listed at the top of this notice. If you are unhappy with how we have dealt with your complaint, you are able to contact the Information Commissioner’s Office (ICO) at any time. Further details on how to contact the ICO can be found on their website: https://ico.org.uk.

Cookies used on this site

We use cookies to provide essential website functionality, such as keeping users logged in via session management using AWS Cognito. These cookies are necessary for authentication and maintaining secure access to your account while browsing our platform, and they do not require explicit consent under GDPR.

Non-essential cookies, such as those used for analytics, marketing, or behavioral tracking, are only enabled after you provide your explicit consent through our cookie banner. Until you accept, no tracking or analytics cookies will be set.

Once you accept, we use Google Analytics to understand how our website is used. You can find out more about how Google uses data at https://policies.google.com/technologies/partner-sites?hl=en-GB.

Additionally, we partner with Microsoft Clarity and Microsoft Advertising to capture how you use and interact with our website through behavioral metrics, heatmaps, and session replay to improve and market our products/services. Website usage data is captured using first and third-party cookies and other tracking technologies, but only after you have given consent. For more information about how Microsoft collects and uses your data, visit the Microsoft Privacy Statement.

You can adjust your cookie preferences or withdraw consent at any time via the cookie settings in your browser. If you decline non-essential cookies, this will not affect your ability to use essential site functionality.