This website uses cookies to function correctly.
You may delete cookies at any time but doing so may result in some parts of the site not working correctly.
 

Noticeboard

Practice closure for staff training - Thursday 31st January 2019


The Practice will close at 12.00noon on Thursday 31st January 2019 to provide important training and learning events for staff. If you require urgent medical advice during the closure please contact out of hours by calling 111. Thank you.


General Data Protection Regulation & Privacy Notice


The General Data Protection Regulation (GDPR) is a new law that determines how your personal data is processed and kept safe, and the legal rights that you have in relation to your own data. The regulation applies from 25 May 2018 and will apply even after the UK leaves the EU. For further details please see the Practice's Privacy Notice (under the Quick Links section opposite).


 

Privacy Notice

Church View Surgery – Privacy Notice

 

Church View Surgery takes your privacy very seriously. We are committed to protecting and safeguarding your personal data. As part of this commitment, we’re updating our Privacy Policy to meet the high standards of the new European data protection law known as the General Data Protection Regulations (GDPR).

We are registered with the Information Commissioner’s Office as a Data Controller and our registration number is Z5653540.

If you have any questions or wish to make a request in relation to your information, please contact us at:

Church View Surgery

Market Hill

Hedon

HU12 8JE

Or email our Data Protection Officer, Cathryn Palmer at eryccg.churchviewsurgery@nhs.net

Church View Surgery aims to provide you with the highest quality health care. To do this we must keep records about you, your health and the care we have provided or plan to provide to you.

Your doctor and other health professionals caring for you, such as nurses or physiotherapists, keep records about your health and treatment so that they are able to provide you with the best possible care.

These records are called your ‘health care record’ and may be stored in paper form or on computer and electronic systems and may include Personal Data such as:

  • basic details about you, such as address, date of birth, NHS number, and next of kin

as well as Sensitive Personal Data such as:

  • contact we have had with you, such as clinical visits

  • notes and reports about your health

  • details and records about your treatment and care

  • results of x-rays, laboratory tests etc

Healthcare providers are permitted to collect, store, use and share this information under General Data Protection Regulations which has a specific section related to healthcare information.

What do we do with your information?

  • Refer you to other healthcare providers when you need other service or tests

  • Share samples with laboratories for testing (like blood samples)

  • Share test results with hospitals or community services (like blood test results)

  • Allow out of hours GPs to look at your practice record when you go to an appointment

  • Send prescriptions to a pharmacy

  • Patients are texted in relation to healthcare service

  • Samples are provided to the courier for delivery to pathology

  • Share reports with the coroner

  • Receive reports of appointments you have attended elsewhere such as with the community nurse or if you have had a stay in hospital.

What else do we do with your information?

Along with these activities that allow us to provide health care to you, we use information in other ways which allow us to ensure that care is safe and to provide data for the improvement and planning of services.

  • Quality / payment / performance reports are provided to service commissioners

  • As part of clinical research – information that identifies you will be removed, unless you have consented to being identified

  • Undertaking clinical audits within the practice

  • Supporting staff training

Sharing when Required by Law

Sometimes we will be required by law to share your information and will not always be able to discuss this with you directly. Examples might be for the purposes of detection or prevention of crime, where it is in the wider public interest, to safeguard children or vulnerable adults or where required by court order.

Information Access and Rights

Data protection law provides you with a number of rights that the Practice must support you with.

Right to Access - You have the right to obtain:-

  • confirmation that your information is being used, stored or shared by the practice

  • a copy of information held about you

We will respond to your request within 30 days of receipt or will tell you when it might take longer.

We are required to validate your identity including the identity of someone making a request on your behalf

Right to correction

If information about you is incorrect, you are entitled to request that we correct it.

There may be occasions, where we are required by law to maintain the original information – our Data Protection Officer will talk to you about this and you may request that the information is not used during this time.

We will respond to your request within 30 days of receipt or will tell you when it might take longer.

Complaints

You also have the right to make complaints and request investigations into the way your information is used. Please contact our Data Protection Officer or visit the link below for more information.

For more detailed information on your rights visit https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/

Case Finding

Sometimes your information will be used to identify whether you need particular support from us. Those involved in your care might look at particular indicators and contact you or take action for healthcare purposes such as preventing you from having to visit accident and emergency by supporting you in your own home or in the community.

We will use automated technology to help us to identify people that might require support but ultimately, the decision about how to support you is made by those involved in your care.

Our Data Protection Officer will be happy to speak to you about this if you have concerns or objections.

Information Technology

The Practice will use third parties to provide services that involve your information such as:

  • Removal and destruction of confidential waste

  • Provision of clinical systems

  • Provision of connectivity and servers

We have contracts in place with these third parties that prevent them from using it in any other way than instructed. These contracts also require them to maintain good standards of security to ensure your confidentiality.

How do we protect your Information?

We are committed to ensuring the security and confidentiality of your information. There are a number of ways we do this;

  • Staff receive annual training about protecting and using personal data

  • Policies are in place for staff to follow and are regularly reviewed

  • We check that only the minimum amount of data is shared or accessed

  • We use ‘smartcards’ to access systems, this helps to ensure that the right people are accessing data – people with a ‘need to know’

  • We use encrypted emails and storage which would make it difficult for someone to ‘intercept’ your information

  • We report and manage incidents to make sure we learn from them and improve

  • We put in place contracts that require providers and suppliers to protect your data as well

  • We do not send your data outside of the EEU.

 

Visitors to our Website

At Church View Surgery, we are committed to maintaining the trust and confidence of visitors to our web site and subscribers to our newsletter. Here you’ll find information on how we treat data that we collect from visitors to our website, or when someone subscribes to our newsletter. When someone visits www.churchviewsurgery.com we use a third party service, My Surgery Website, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make, and do not allow My Surgery Website to make, any attempt to find out the identities of those visiting our website.

If we do want to collect personally identifiable information through our website, we will be up front about this. We will make it clear when we collect personal information and will explain what we intend to do with it.

Newsletter Sign Up

As part of the registration process, we collect personal information and ask if you would like to join our Patient Participation Group. We use that information for a couple of reasons: to tell you about information you have asked us to tell you about; to contact you if we need to obtain or provide additional information; to check our records are right and to check every now and then that you’re happy and satisfied. We do not rent or trade email lists with other organisations and businesses.

You can unsubscribe to general mailings at any time of the day or night by responding to our emails with ‘Unsubscribe” in the heading box or by emailing our Data Protection Officer Cathryn Palmer at eryccg.churchviewsurgery@nhs.net

 

Links to Other Web Sites

This privacy notice does not cover the links within this site linking to other websites. Those sites are not governed by this Privacy Policy, and if you have questions about how a site uses your information, you will need to check that site’s privacy statement.

 

Changes to this Privacy Notice

We keep our Privacy Notice under regular review. This Privacy Notice was last updated on 22 May 2018 and will be reviewed annually.



 
Call 111 when you need medical help fast but it’s not a 999 emergencyNHS ChoicesThis site is brought to you by My Surgery Website