Please find below our Practice Policies relating to the General Protection Regulations (GDPR) and the 2018 Data Protection Act which protects the personal data of our patients and staff
The key terms
GDPR and other data protection laws rely on the term ‘personal data’ to discuss information about individuals. There are two key types of personal data in the UK and they cover different categories of information.
What is personal data?
Personal data can be anything that allows a living person to be directly or indirectly identified. This may be a name, an address, or even an IP address. It includes automated personal data and can also encompass pseudonymised data if a person can be identified from it.
What is sensitive personal data?
GDPR calls sensitive personal data as being in ‘special categories’ of information. These include trade union membership, religious beliefs, political opinions, racial information and sexual orientation.
Privacy Notice-Care Quality Commission
Privacy Notice-Duty of Care Emergencies
Privacy Notice-National Screening Programs