GDPR

On 25th May, the Data Protection Act 2018 comes into force. Princes Gardens Surgery has ensured that we have met or are working towards meeting all our responsibilities under the new legislation. Full details can be found below.

In particular, you can find:

  • Our Privacy policy
  • Detailed privacy notices for all data processing that we perform on our patients' medical information
  • Your data subject rights


In addition, NHS Digital launches the National Data Opt Out on that day. We have provided full information about this, again under the "Medical Record" tab at the top of this page.

For more information, see the ICO's website:   

 "Your Data Matters"

Under the Data Protection Act, we have a legal duty to protect any information we collect from you. We use leading technologies and encryption software to safeguard your data and keep strict security standards to prevent any unauthorised access to it.  A new act, the General Data Protection Regulation (GDPR), comes into force on Friday 25th May 2018.

GDPR is a new piece of legislation that will supersede the Data Protection Act.  It will not only apply to the UK and EU, it covers anywhere in the world in which data about EU citizens is processed.

The GDPR is similar to the Data Protection Act (DPA) 1998 (which the practice already complies with) but strengthens many of the DPA’s principles.

We have a named Data Protection Officer and Caldicott Guardian in place, as we always have, and details of both of these are contained in our Privacy Notices.

You will find links below to general GDPR information documents, our Privacy Notices and also a form for you to complete should you wish to have access to your medical record.  We continue to work on a further documentation, which we expect to complete by the end of August 2018.

Click on the links below to read each document:

GDPR Information Poster

Data Protection Information Poster

Data Protection Policy

Privacy Notice

Subject Access Policy      

NHS Digital - Privacy Notice

Direct Care - Privacy Notice

Routine Care & Referral - Privacy Notice

Direct Care (Emergencies) - Privacy Notice

Summary Care Records - Privacy Notice

National Screening - Privacy Notice

Public Health - Privacy Notice

Health Planning & Quality - Privacy Notice

Audits & Medical Research - Privacy Notice

The GDPR regulation is very new and is certain to change and evolve over the next 12 months so please do please keep returning to this page to see any changes.

 

National Data Opt Out Programme

NHS England are introducing a new tool that patients can use to opt out of their confidential patient information being used for reasons other than their individual care and treatment.  It will be secure and accessible and will be available from 25 May 2018.

You can read more about this national programme by clicking here.

 

Changes to our policy

If our privacy policy changes in any way, we will place an updated version on this page. Regularly reviewing the page ensures you are always aware of what information we collect, how we use it and under what circumstances, if any, we will share it with other parties.

 

What information do we collect on the web site?

This privacy statement only covers Princes gardens Surgery website. It does not cover all sites that can be linked to from this site, so you should always be aware when you are moving to another site and read the privacy statement on that site.

From time to time on this web site, you may be asked to submit personal information about yourself (e.g. name and email address) in order to receive or use services.

By entering your details in the fields requested, you enable Princes gardens Surgery and its service providers to provide you with the services you select. Any information you provide to Princes gardens Surgery will only be used by us, our agents and service providers and will not be disclosed unless we are obliged or permitted to by law to do so.

We will hold your personal information on our systems for as long as you use the service you have requested and remove it in the event that the purpose has been met or when you no longer wish to continue your subscription.

 

Security

This site has security measures in place to protect the loss and alteration of information under our control.

 

Use of cookies

When we provide services, we want to make them easy, useful and reliable. Where services are delivered on the internet, this sometimes involves placing small amounts of information on your device, for example, computer or mobile phone. These include small files known as cookies. They cannot be used to identify you personally.

These pieces of information are used to improve services for you through, for example:

  • Enabling a service to recognise your device so you don’t have to give the same information several times during one task
  • Recognising that you may already have given a username and password so you don’t need to do it for every web page requested
  • Measuring how many people are using services, so they can be made easier to use and there’s enough capacity to ensure they are fast.

You can manage these small files yourself through your browser setting.

Current cookies

We use the following cookies on our website –

Cookie: Google Analytics
Name: _utma, _utmb, _utmc, _utmz, GAPS, LSID, LSOSID, OTZ
Purpose:   These cookies are used to collect information about how visitors use our site, which we use to help improve it. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. These cookies may also be identified as originating from england.nhs.uk More information about Google cookies.

Cookie: www.google.com (Google embedded search)
Name: __utmx, __utmxx, APISID, HSID, NID, PREF, SAPISID, SID, SSID
Purpose: These cookies are used to collect information about how visitors use our site, which we use to help improve it. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited and what they have searched for. More information about Google cookies.

Embedded content

We want to provide interesting and engaging content on our website. On a number of pages we use ‘plug ins’ or embedded media. For example, we embed YouTube videos in many pages. We also provide links to share content with popular social media sites such as Facebook and Twitter.

The suppliers of these services may also set cookies on your device when you visit the pages where we have used this type of content. These are known as ‘third-party’ cookies. Third party cookies are delivered on behalf of their respective organisations and as such they may change their name and purpose from the cookies identified below, this is beyond the control of Princes Gardens Surgery.

Cookie: YouTube
Name: PREF, VISITOR_INFO1_LIVE, use_hitbox
Purpose: To track visitor views, and to remember user preferences when viewing YouTube videos embedded in our website web pages.   More information about YouTube cookies.

Cookie: Twitter
Name: guest_id, remember_checked, remember_checked_on, secure_sessions, twll
Purpose: To track visitor information and for security authentication. More information about Twitter cookies.

How to control and delete cookies

We will not use cookies to collect personally identifiable information about you.

However, if you wish to restrict or block the cookies which are set by our websites, or indeed any other website, you can do this through your browser settings. The ‘Help’ function within your browser should tell you how.

Alternatively, you may wish to visit www.aboutcookies.org which contains comprehensive information on how to do this on a wide variety of browsers. You will also find details on how to delete cookies from your machine as well as more general information about cookies.

Please be aware that restricting cookies may impact on the functionality of our website.

If you wish to view your cookie code, just click on a cookie to open it. You’ll see a short string of text and numbers. The numbers are your identification card, which can only be seen by the server that gave you the cookie.

For information on how to do this on the browser of your mobile phone you will need to refer to your handset manual.

To opt-out of third-parties collecting any data regarding your interaction on our website, please refer to their websites for further information.