General Data Protection Regulation (GDPR)
This is a new EU law that determines how your personal data is processed and kept safe and the legal rights you have in relation to your own data.
This regulation applies from 25th May 2018 and will continue to apply even after the UK leaves the EU.
What does GDPR mean:
Patient’s rights regarding the information that practices hold about them which include:
Practice Privacy Notice
Our Privacy Notice explains why we collect information about you and how that information may be used to deliver your personal care and manage the local health and social care system.
The notice reflects:
The notice also explains your rights in relation to consent to use your information, the right to control who can see your data and how to seek advice and support if you feel that your information has not been used appropriately.
The use of SMS Messages for telephone appointments
We are increasingly using SMS messaging to request information or photos when patients book a telephone appointment. The document below gives guidance as to the security and Information Governance of photos and how and where this is stored.
Please have a look at the information leaflets below which are clear guides as to what information we collect about you, how we use it, how you can opt out of data collection if you do not wish to share your information and how you can request access to the information we hold about you.
Subject Access Request (SAR)
A Subject Access Request gives you access to the information we hold about you. Please use the form below if you wish to request access to your health records in accordance with GDPR