Privacy Policy

Divine Mercy Hospital respects its patient’s right to privacy and everyone’s privacy of personal data.  We are committed to handling with care your personal data that are under our control.  You have the right to be informed how the hospital, collects and uses (including disclosure) your personal and health information.

What personal data do we collect from you?

Our doctors, nurses, and other members of the healthcare team who are taking care of you may collect, document, use and store your personal information to ensure that you will be given the highest possible quality of patient care that you deserve. The following personal and health information may include the following:

  • Basic personal information, such as but not limited to, your name, address, date of birth, gender, religious affiliation, contact information, occupation, marital status, citizenship.
  • Relevant information and contact information of your relatives, guardians or next of kin.
  • Chief complaint(s)
  • Medical history such as, but not limited to, date of previous admissions, existing illness, medication intake, family medical history and sexual life.
  • Vital signs (blood pressure, temperature, pulse rate, respiratory rate)
  • Biometrics, such as height and weight; biological information such as blood type.
  • Result of xrays, scans, laboratory tests and other diagnostic procedures.
  • For business purposes: Philhealth details, Social Security System details, Government Insurance System details, and insurance details, Senior Citizen details, Person with Disability details, Pag-IBIG number (Home Development Mutual Fund) and Tax Identification Number
  • Other information as necessary.

Our hospital is equipped with CCTV cameras to help us ensure safety and security of the patients, clients, the employees and the building.

How and When do we collect your data?

It is important that we collect accurate information about you in both electronic and paper based forms

  • Before implementing the healthcare services you are availing.
  • When you get in touch with us to ask about something, file a complaint or request for service.
  • Take part of our research, surveys.
  • Participate in various activities sponsored by us or any other organization acting on our behalf, such as symposia, conferences, focus group discussions and the like; and
  • When you apply for a job with us.

If you feel that some of the information we collect are not necessary, please feel free to ask any of our staff so that we can explain to you why the information are needed and requested from you.

Why do we collect personal data about you?

  • For Medical Treatment: When providing patient care and medical treatment, we collect your personal data to help us understand your current health status and to assist us in maintaining a record of the care and other services that you have received from the hospital. We maintain your medical record for efficient coordination between members of the healthcare team who are involved in the management of your care. This will also allow continuity of care in case you return to us for follow ups and other healthcare services.  For this purpose, R.A. 10173 otherwise known as the Data Privacy Act of 2012 allows us to maintain these records.
  • For Reporting Requirements: Information about certain diseases and other conditions may be reported to the Department of Health or other local and national government agencies, as mandated and authorized by laws and regulations. Your health information may also be disclosed to the Philippine Health Insurance Corporation (PhilHealth) as required by law.
  • For Admission and Billing and Claims Processing: For the purpose of processing your hospital bills, your information may be used and disclosed to the Philippine Health Insurance Corporation (PhilHealth), social welfare agency, your insurance company, Health Maintenance Organizations (HMOs) and employer to facilitate reimbursement of the hospital bill.
  • For Historical, Statistical or Scientific Purpose: Your information may be used to generate data that would help the hospital enhance its services.
  • For Business Operations: Your personal information will be processed as part of our hospital operations. This includes our general business management operations, quality control and assessment, employee and/or staff evaluation, training of medical students and residents and financial performance reporting.  Examples of these include the calling of your name verbally or through a prompter in a queue, our internal evaluation of employees and medical staff performance, giving access to your medical information to medical students and residents as part of our training programs, contacting you personally for appointments and follow ups, preparation of statistical data pertaining to the operations of the hospital for quality assurance and financial reporting.
  • Performance of a legal obligation: Under the law, the Hospital is requires to share your personal information to government authorities in certain instances such as, we may be required to provide documentary and/or testimonial evidence in court proceedings that may require the disclosure of your personal information. We may also be required to provide your personal information to government authorities in certain circumstances.
  • Marketing and other legitimate commercial purposes: We may also use your personal information to contact you with newsletters, updates, information campaigns, marketing promotional materials and other information that may be related to the services we provide.

Other uses and disclosures of your personal information

Outside of the purposes stated above other uses and disclosures of your personal information be made only with your express authorization, unless we are otherwise permitted or required by law.  Your personal information may be used and disclosed by the hospital in the following circumstances.

  • Access to patient directory by your visitors.
  • Other people involved in, or interested in your healthcare, such as your family members, loved ones or any other person you identify as being involved in your healthcare. In case you are not capable of agreeing or objecting, we will use our judgement in determining whether the use or disclosures is in your best interest. Except in case of an emergency or when otherwise permitted or required by law, we will inform you of our intended action prior to making such use or disclosure and will, at that time, offer you the opportunity to object.  If you are not present or unable to agree or object, we will use our judgement in determining whether the use or disclosures is in your best interest.  We may also use or disclose your personal information without your consent or authorization when such use or disclosure is required by law.  This includes the disclosure of your personal information pursuant to an order of a court of tribunal, or when such disclosure is required under existing laws and regulations.

Do we share your personal data to other institution or organization?

Yes.  There are instances that we share your personal data to government agencies which lawfully collects information.  For instance, the Department of Health requires submission of relevant personal information of patients with certain non-communicable and communicable disease, injuries, etc. for purposes of disease surveillance and monitoring.

We may also share personal information to fulfil legal mandate/s like when ordered lawfully to do so by a court or a government agency or public authority.

We may also share personal information with our service providers, partners, affiliates and related entities who provide products and services to the hospital for the same purpose as explained above.

 

How long do we secure your personal data? How long will we keep your data?

Only authorized personnel have access to your personal information in our files.

We have set-up adequate, technical, physical, and organizational security measures to protect your data from unauthorized access and disclosure.

We store your personal data in accordance with period guidelines and limitations provided by governing agencies, such as, Department of Health for retention of medical records and Bureau of Internal Revenue for financial documents.  We will take reasonable steps in disposing or discarding your personal information in a secure manner that would prevent further processing, unauthorized access, or disclosure to any other party or the public, or prejudice your rights as a data subject.

What are your Rights as data subject?

  • You have the right to request a copy of personal and health information that we hold about you, as well as to ask for it to be corrected if you think there is anything wrong.
  • You have the right to object to, or withdraw consent that may have been given for, certain processing like direct marketing, trainings and researches.
  • You have the right to suspend, withdraw, or order blocking, removal or destruction of your personal data from our filing system if you have substantial proof that your rights are violated or that your data are incomplete, false or unlawfully obtained; or processed for unauthorized or unlawful purpose.
  • You have the right to be indemnified for damages you may sustained due to inaccurate, incomplete, false or unauthorized use of your personal data.
  • Transmissibility of your Rights. Upon death or incapacity, your rights may be transferred to your lawful heirs.

How can you contact us?

If you have complaints or questions, you may direct your concerns to the hospital admitting office at (632)808-3392/93 local 104 or email us at info@newdivinemercyhospital.com.ph.

If you think your concerns are not acted upon, please email us, attention: Data Privacy Officer.

In case we are unable to address your concern, you have the right to lodge your complaint before the National Privacy Commission.

Website Privacy Policy

This Section is applicable to the website and affiliate sites of Divine Mercy Hospital.  Please be advised that practices described in this Privacy Policy apply only to information gathered online at our website.

By visiting our website, you are accepting these terms.  If you do not agree to the terms of this Privacy Policy, please do not use the website.

By downloading images found in our website, you are voluntarily giving to us your email address.  This data is stored in our database for security monitoring and not for marketing or non-medical purposes.

Divine Mercy Hospital website, and its auxiliary sites, use website cookies.  These are only used to enhance the usability of our webpage.  We do not store any personal information on our website or database

Website Data Security:  Our website is a highly secured website.  We ensure that all users visiting this site have their confidential data protected from phishers and unauthorized personnel.

Rest assured that data are located on our highly secured database.

Links to other websites:  Our official website contains links or external links that are/may be related to the organization, doctors, health education, news and hospital events/activities.

These websites have their own privacy policies and not covered by us.

Data Privacy Notice for Online Job Applicants

We are committed to protect your privacy and the security of your personal information as individuals interested to apply and work with us.

Collection and Use:  We collect personal information that is material and relevant to your job application.  In the course of your application with us, we may also disclose and make your personal information available to authorized individuals who elevate and assess your job application; government regulatory agencies and 3rd party service providers which provide services for credential verification and background checks.

Storage, Protection and Retention:  To protect your privacy and the confidentiality of your personal information, we have set up technical security, administrative and physical measures against unauthorized access to your data.

If your application is successful, we will collect, use and retain your personal information to proceed with the recruitment process until your employment with Divine Mercy Hospital.

Successful applicants sign a confidentiality contract with us.

If your application is unsuccessful, we will retain your information for six (6) months, after which your records will be disposed.  If there are vacancies in the future, we will get your consent to re-process your application.

 

Access and Correction

You have the right to access, modify and delete your Personal Information or raise questions or concern by contacting us through our HR Department (632) 808-3392-93 local 113.

If you think your rights are violated or not acted upon, you may email our Data Privacy Officer at info@newdivinemercyhospital.com.ph.

In the event that Divine Mercy Hospital is unable to address your privacy concerns, you may lodge your complaint before the National Privacy Commission.

Our undertakings regarding your personal information

Pursuant to the Data Privacy Act (DPA), we undertake to protect your personal information.  The Hospital creates and maintains a record of your personal information in its offices and this notice applies to your personal information that we collect. Under the DPA, the Hospital is required to protect your personal information, and to process the same only in accordance with the following data privacy principles:

  • Transparency: We are obliged to inform you of the nature, purpose and extent of our processing of your personal information, including the risks and safeguards involved, the identity of the persons involved in the processing of your personal data, your rights as data subject, and how these rights can be exercised.
  • Legitimate purpose: We will only process your personal information for a legitimate purpose, compatible with our declared and specified purpose, and not contrary to law3, morals and public policy.
  • Proportionality: We will process your personal information as adequate, relevant, suitable, necessary and not excessive in relation to the declared and specific purpose.

Your personal information is stored in a manner that is reasonably protected from misuse and loss and from unauthorized access, modification and disclosure.  We strictly enforce our privacy policy and put in place technical, organizational and physical security measures that are designed to protect your personal information from unauthorized access, alteration and disclosure.

When your personal information is no longer needed for which it was obtained, we will take reasonable steps in disposing or discarding your personal information in a secure manner that would prevent further processing, unauthorized access, or disclosure to any other party or the public, or prejudice your rights as a data subject.

Changes to this Privacy Statement and Privacy Policy

From time to time, we may change or update our privacy statement, privacy policy and practices to comply with government and regulatory requirements, to adapt to new technologies and protocols, to align with industry practices or for other legitimate purposes.

Notice of significant changes will be posted in our website.  If we are required by law, we will take steps to obtain your updated consent.