This website collects some personal data from users, as stated in our website provider’s Privacy Policy.
Confidentiality
To provide you with the care you need, we hold the details of your consultations, illnesses, tests, prescriptions and other treatments that have been recorded by everyone involved in your care and treatment e.g. GP, Health Visitor, Practice Nurse. This information may be stored on paper or electronically on computer files by Practice staff.
We sometimes disclose some of your personal health information with other organisations involved in your care. For example, when your GP refers you to a specialist at a Hospital we will send relevant details about you in the referral letter and receive information about you from them. Our Practice also participates in regional and national programmes such as the cervical cytology screening service and your name and address, date of birth and health number will be given to them in order to send an invitation to you.
We need to use some of your personal health information for administrative purposes. In order to receive payment for services provided to you, we have to disclose basic details about you to the NHS Board responsible for this area and to the Common Services Agency for the Scottish Health Service. These organisations have a role in protecting public funds, and are authorised to check that payments are being properly made. We are required to co-operate with these checks and the disclosure of your data is a necessary part of our provision of healthcare services.
Sometimes, we may participate in studies that are designed to improve the way services are provided to you or to check that our performance meets required standards and benchmarks. Whenever we take part in activities such as these we will ensure that as far as possible any details that may identify you are not disclosed.
We are sometimes involved in health research and the teaching of student nurses, doctors and other health professionals. We will not use or disclose your personal health information for these purposes unless you have been informed beforehand and given your consent for us to do so.
Where you need a service jointly provided with a local authority we will seek your permission before giving them your details.
Sometimes we are required by law to pass on information e.g. the notification of births and deaths and certain diseases or crimes to the government is a legal requirement.
General Data Protection Regulation 2018
The General Data Protection Regulation (GDPR) is a new law that determines how your personal data is processed and kept safe, and the legal rights you have in relation to your own data.
The regulation applies from 25 May 2018 and will apply even after the UK leaves the European Union.
WHAT GDPR WILL MEAN FOR PATIENTS
The GDPR sets out the key principles about processing personal data, for patients and staff
- Data must be processed lawfully, fairly and transparently
- It must be collected for specific, explicit and legitimate purposes
- It must be limited to what is necessary for the purposes for which it is processed
- Information must be accurate and kept up to date
- Data must be held securely
- It can only be retained as long as is necessary for the reasons it was collected
There are also stronger rights for patients regarding the information Practices hold about them. These include:
- Being informed about how their data is used
- Patients to have access to their own data
- Patients can ask to have incorrect information changed
- Restrict how their data is used
- Move their patient data from one health organisation to another
- The right to object about their patient information being processed (in certain circumstances)PHS Primary Care Intelligence Service (PCIS)
Patient Privacy Notice Data extracts previously captured via SPIRE are now scheduled to be undertaken by the new PHS Primary Care Intelligence Service (PCIS). The permissions associated with the new service are the same as those previously agreed for SPIRE.