Data Protection and Privacy Policy

This version is out of date - privacy policy dated 2nd March 2015. Click here for the updated version

This website ("website") is operated by Ieso Digital Health Limited ("Ieso Digital Health") whose address is

Jeffreys Building, Cowley Road, Cambridge, CB4 0DS

The terms "Ieso Digital Health", "we", "us", "our" and "ours" when used in this Privacy Policy mean Ieso Digital Health Limited.

The terms "you", "your" and "yours" when used in this Privacy Policy mean any user of this website.

The term 'website' means Ieso Digital Health application.

"Data Protection Acts" means legislation in force in the UK from time to time intended to protect data relating to individuals and their privacy.

IMPORTANT: As owners of this site we are committed to the privacy and confidentiality of any information entered into this program. We shall take reasonable steps to protect the information collected from you and other Web Users and use such information only for the purpose for which it was provided. By entering personal data and/or by using this website you give your consent that all personal data entered may be processed in the manner and for the purposes described below. Personal and Clinical Data entered onto this site may also form part of your medical records and can be used as appropriate by your healthcare provider (eg NHS)

Scope of Privacy Policy

This Privacy Policy describes the current policies and practices with regard to Personal and Clinical Data entered into Ieso Digital Health to the extent that such Personal and Clinical Data is protected by applicable European data protection laws. The term "Personal and Clinical Data" refers to personally identifiable information about you, such as your name, job description, health related data, birthdate, e-mail address or mailing address, as well as personal clinical data that you may enter into the program, such as GP details, transcripts of therapy sessions, questionnaire scores and messages sent between the Web User and the Service.

Notification of changes to Privacy Policy

We are continually improving our methods of communication and adding new functionality and features to the Ieso Digital Health website and to our existing services. Because of these changes to the website, changes in the law and the changing nature of technology, our data practices will change from time to time. If and when our data practices change, we will notify you through this privacy policy, and the local data authority, (where required by law), of the changes. We encourage you to check this page frequently.

Collection of Personal and Clinical Data including e-mail addresses

When you choose to register on Ieso Digital Health we request personal information about you such as your name, e-mail address, and telephone number. We may also ask for demographic information such as age and gender. As mentioned above, you will also be required to provide, and / or we will store, certain clinical data that is sensitive information. The information you provide is electronically stored in our databases.

We and you undertake to one another, where applicable:

  • to comply at all times with the Data Protection Acts;
  • to obtain and/or maintain all necessary registrations and/or notifications required by the Data Protection Acts; and
  • not to do or permit anything to be done which may cause the other to be in breach of the Data Protection Acts including, without limitation, the improper collection, use, disclosure or loss of data held on any computer or other equipment or held by way of manual or other non-computerised systems and any kind of improper use, disclosure or abuse of computer passwords.

We are committed to protecting your privacy but we cannot guarantee the security of information disclosed by you online, and you must assume the entire risk for using the website. Please therefore be careful and responsible when maintaining the secrecy of any password and/or account information online.

All information submitted by you, including your address and your email address, is automatically encrypted using the Secure Socket Layer (SSL) protocol, the industry standard for the transfer of sensitive data on the internet.

In the event that Ieso Digital Health is sold or integrated into another business, your details may be disclosed to our prospective purchaser's advisers and subsequently to the new owners.

On request by you, by a Court of law or any other body entitled thereto by law, we will supply information on your stored data and correct, delete or prevent the further use of the data held.

Use of Personal and Clinical Data

Your Personal and Clinical Data is only used for the following purposes:

  • To help provide an effective standard of personal care
  • To help your healthcare provider(eg NHS) assess, monitor, and improve the services provided
  • To allow us to administer this program efficiently

Use of Clinical Data

The information that you enter into Ieso Digital Health is completely confidential and will not be made available to anyone, except in the following circumstances:

  • Your Clinical Helper will be able to access some data to allow them to monitor your progress through the system. It will be clear when entering information, which information they will be able to see.
  • We may require access to this data to help support you to use the program.
  • We may provide access to a third party contracted by us, to help to support you use the program. Before disclosing Personal and Clinical Data to a third party, we contractually require the third party to take adequate precautions to protect that data and to comply with applicable law.

Anonymous data collected through this website

Ieso Digital Health reserves the right to anonymise (modify to render anonymous) any data collected from you. Once rendered anonymous these data may be used by Ieso Digital Health and its academic partners to support research activities, provided that your identity is kept anonymous at all times and cannot be derived from the anonymised data.

Also, summaries of anonymous Personal and Clinical Data (for example average scores of all users on questionnaires) will be used to improve the service, and may be used in publications or presentations at conferences or on the website to indicate the effectiveness of the service. This anonymous data will consist solely of summary information and will not include any personal information that can be used to identify the users of the service. Your use of the service implies consent for the use of summary data in this way. In addition to the information we collect as described above, we use technology to collect anonymous information about the use of our website. For example, our web server automatically logs which pages of our website our visitors view, their IP addresses and which web browsers our visitors use. This technology does not identify you personally, it simply enables us to compile statistics about our visitors and their use of our website. Our website contains hyperlinks to other pages on our website. We may use technology to track how often these links are used and which pages on our website our visitors choose to view. Again this technology does not identify you personally – it simply enables us to compile statistics about the use of these hyperlinks.


In order to collect the anonymous data described in the preceding paragraph, we may use temporary "cookies" that remain in the cookies file of your browser until the browser is closed. Cookies by themselves cannot be used to discover the identity of the user. A cookie is a small piece of information that is sent to your browser and stored on your computer's hard drive. Cookies do not damage your computer.

Our website uses first-party session cookies only. Session cookies allow us to track your actions during a single browser session and do not remain on your device beyond your session; and the fact that a session cookie is 'first-party' means that it is set by our website (as opposed to issued by a different website to that being visited – e.g. a cookie included on our website set by Google Analytics to gather anonymised information for the benefit of all web users would be a third-party cookie).

You can set your browser to notify you when you receive a cookie. This enables you to decide if you want to accept it or not. If at any time you wish to disable our cookies you may do so through the settings on your browser, but if you do so you will not be able to use certain important features of our service.

We also use your IP address to help diagnose problems with our server and to administer our website. An IP address is a numeric code that identifies your computer on a network or, in this case, the Internet. Your IP address is also used to gather broad demographic information. We may also perform IP lookups to determine which domain you are coming from (i.e:, to more accurately gauge our users' demographics.

Disclosure of your Personal and Clinical Data

We do not share, sell or distribute your Personal and Clinical Data with unrelated third parties, except as otherwise provided for in this Privacy Policy and under these limited circumstances:

  • We may share, transfer or disclose the information in our databases and server logs to comply with a legal requirement, for the administration of justice, interacting with anti-fraud databases, to protect your vital interests, to protect the security or integrity of our databases or this website, or to take precautions against legal liability. We will inform you of any such transfer or disclosure as required by law.
  • Where appropriate, before disclosing Personal and Clinical Data to a third party, we contractually require the third party to take adequate precautions to protect that data and to comply with applicable law.

Data access and corrections

Data entered onto this site may form a part of your medical records. If you wish the Personal Data we hold to be disclosed to you then you should make this request through your healthcare provider. Requests to delete Personal Data can only be made through your health care provider and are subject to any applicable legal and ethical reporting or document retention obligations imposed on us. You may update certain items of information you have entered by logging onto your account and using the 'edit my details' facility. For all other changes you should contact your Ieso Digital Health provider.

Links to other websites

This website may contain hyperlinks to websites that are not operated by us. These hyperlinks are provided for your reference and convenience only and do not imply any endorsement of the activities of these third-party websites or any association with their operators. We do not control these websites and are not responsible for their data or privacy practices. We urge you to review any privacy policy posted on any site you visit before using the site or providing any Personal and Clinical Data about yourself.

Your obligations

It is your responsibility to keep your password safe and to ensure that when using the program it cannot be accessed by other people without your consent. The company cannot accept any liability for loss or disclosure of your personal and Clinical data resulting from your failure to keep your password safe or allowing unauthorised persons access to the programme whilst it is in use by you.

Transfer of data abroad

If you are visiting this website from a country other than the country in which our servers are located (currently UK), the various communications will necessarily result in the transfer of information across international boundaries. By visiting this website and communicating electronically with us, you consent to the processing and transfer of your Personal and Clinical Data as set out in this Privacy Policy.

Governing Law

This Privacy Policy forms part of our website Terms and Conditions and the substantive laws of England, as described in the Terms and Conditions, will apply to this Privacy Policy.


We welcome comments about this Privacy Policy. If you have any questions about this Privacy Policy or any part of our service, you should first contact your Ieso Digital Health provider, if they are unable to answer your questions, you may contact us by writing to

Ieso Digital Health,
Jeffreys Building, Cowley Road, Cambridge, CB4 0DS

or by e-mailing us at Any feedback will be stored at this address.

If you are in crisis, or need help dealing with one - do not use this site. For immediate help, please call the National Lifeline at 1-800-273-8255, or text HOME to 741741.