Data Protection

Our commitment to safeguarding your personal information

Our Data Protection Commitment

Eunoia Human Asset Management is committed to protecting the privacy and confidentiality of all personal data we process. We comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, ensuring the highest standards of data protection for our clients, employees, and service users.

Data Protection Principles

We adhere to the following UK GDPR principles:

  1. Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and transparently.
  2. Purpose Limitation: We collect data only for specified, explicit, and legitimate purposes.
  3. Data Minimisation: We collect only data that is adequate, relevant, and necessary.
  4. Accuracy: We keep personal data accurate and up to date.
  5. Storage Limitation: We retain data only for as long as necessary.
  6. Integrity and Confidentiality: We implement appropriate security measures to protect data.
  7. Accountability: We are responsible for demonstrating compliance with these principles.

Special Category Data

As a mental health and wellbeing service provider, we process special category personal data (health information). We do so only:

  • With your explicit consent
  • For the provision of healthcare services
  • In accordance with professional confidentiality obligations
  • With appropriate safeguards in place

Security Measures

We implement comprehensive technical and organizational measures to protect your data:

Technical Safeguards
  • Encryption (in transit and at rest)
  • Secure authentication systems
  • Regular security updates
  • Firewall and intrusion detection
Organizational Safeguards
  • Staff training on data protection
  • Access controls and authorization
  • Confidentiality agreements
  • Regular security audits

Data Breach Procedures

In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will:

  • Notify the relevant supervisory authority within 72 hours
  • Inform affected individuals without undue delay
  • Provide clear information about the nature of the breach
  • Explain the measures taken to address the breach
  • Offer guidance on steps you can take to protect yourself

Your Data Protection Rights

Under UK GDPR, you have comprehensive rights regarding your personal data. For detailed information, please refer to our Privacy Policy.

To exercise your rights, contact our Data Protection Officer at care@eunoiawellness.qa.

Third-Party Processors

When we engage third-party service providers, we ensure they:

  • Are bound by strict data processing agreements
  • Comply with UK GDPR requirements
  • Implement appropriate security measures
  • Process data only as instructed by us

Data Protection Impact Assessments

We conduct Data Protection Impact Assessments (DPIAs) for high-risk processing activities, ensuring we identify and mitigate potential risks to your privacy and data protection rights.

Contact Our Data Protection Officer

For questions, concerns, or to exercise your data protection rights:

Data Protection Officer
Eunoia Human Asset Management
Email: care@eunoiawellness.qa
Phone: +974 5994 6941
Office 501, Worldwide Building, Opp. Peninsula Newspaper, D-Ring Rd, Doha, Qatar

Last Updated: January 2025. This policy is reviewed regularly to ensure compliance with current data protection legislation.
Eunoia Logo
About
Overview History Team Certifications Case Studies
Solutions
Mental Health First Response Employee Assistance Program Corporate Diagnostics Training & Development Wellbeing Guidelines Psychometric Testing
Resources
Articles Case Studies Whitepapers Tools
Access EAP Portal