The General Data Protection Regulation (GDPR) came into force in the UK on May 25th 2018 and has been designed to replace the Data Protection Act 1998. Under the GDPR, GP surgeries are data controllers for the data they hold about their patients and must be registered with  the Information Commissioners Office (ICO). The ICO oversee the data protection law in the UK.

Under the new GDPR, anyone has the right to be informed about how their data is processed. This is designed to ensure transparency over the use of your personal data, and encompasses our obligation to provide fair processing.

What This Means For You

• Telling you about the information we collect, how we use it and who we share it with.
• Assuring you that your data will be safe, kept confidential and used appropriately
• Enabling you to opt out of sharing your data at any time
• Making you aware that you have the right to access your data

How We Use Your Information

• We collect and hold data about you for the purpose of providing safe and effective healthcare.
• Your information may be shared with our partner organisations to audit services and help provide you with better care.
• Information sharing is subject to strict agreements on how it is used
  We will only share your information outside of our partner organisations with your consent.
• If you are happy with how we use your information you do not need to do anything.
• If you do not want your information to be used for any purpose beyond providing your care please let us know so we can code your record appropriately.
• You can object to sharing information with other health care providers but if this limits your treatment options we will tell you.
• Our guiding principle is that we are holding your information in the strictest confidence.

For more information about how your data is used please view our Privacy Notice