Other Policies

Note: These are our internal operational security and quality policies. For information about your rights as a patient and data protection, please see our [Privacy Policy] and [Health Data Protection Policy].

Information Security Policy

The purpose of this Information Security Policy is to protect the information assets involved in the services provided by GALENEO. It is GALENEO's policy to ensure that:

  • Information is protected against loss of availability, confidentiality, and integrity.
  • Information is protected against unauthorized access.
  • Applicable legal requirements are met, including the General Data Protection Regulation (GDPR), Organic Law 3/2018 on Data Protection (LOPDGDD), Law 41/2002 on Patient Autonomy, and all applicable health sector regulations.
  • Business requirements regarding information security and information systems are met.
  • The Security Committee assesses GALENEO's information assets, which will lead to risk analysis and subsequently risk management. Both the analysis and risk management will be reviewed annually by Management, which will decide whether to conduct a new risk analysis and management. The risks to be addressed will be reflected in the Security Plan.
  • Security incidents are properly communicated and handled.
  • Procedures are established to comply with the Security Policy.
  • The Security Manager will be responsible for maintaining this policy, the management manual, the procedures, and providing support in their implementation. In addition to supervising and verifying compliance with the Security Plan for that year.
  • Each employee is responsible for complying with this Policy and its procedures as applicable to their job position.
  • It is GALENEO's policy to implement, maintain, and monitor the ISMS.

This policy has been approved by GALENEO's Security Committee and will be reviewed annually.

Quality Policy

At Management's request, the Quality Manager has established and implemented a quality system based on the requirements of the UNE-EN-ISO 9001 standard: "Quality management systems. Requirements", for:

  • Management system that supports the services of:
  • Assistance, coordination, and management of standardized medical and nursing procedures, at the patient's/family member's/manager's home or in safe environments distant from the hospital
  • Hospital equipment rental service

The quality system aims to achieve PATIENT-CENTERED CARE QUALITY, both internal and external, of GALENEO through compliance with established requirements, and within set timeframes and prices. To this end, the quality system has the following objectives:

  • Quality Assurance of products and services provided, in accordance with the International Standard ISO 9001.
  • Compliance with requirements offered to our patients, consolidating trust in our Organization.
  • Compliance with all legislation applicable to our activity.
  • Effective management and control of the production process and service delivery.
  • Continuous improvement of processes, procedures, products, and services.
  • Awareness and motivation of GALENEO personnel regarding the importance of implementing, developing, and maintaining the quality system.
  • Establishment of measurable objectives and monitoring of their fulfillment to ensure continuous improvement of our organization.

The assurance that all persons who influence Quality know the policy and objectives is achieved through the dissemination by the Quality Manager of these at all levels of the organization and the distribution of documents that apply to each level in the different work positions.