We use cookies to make this site work. We'd also like to set optional cookies so we can understand how the site is used and improve it. We will not set optional cookies unless you accept them. You can change your choice at any time from the Cookie settings link in the footer.
Strictly necessary cookies
These cookies are required for the site to work. They store your cookie preferences and keep your session secure. They are exempt from consent under PECR Regulation 6(4) because they are essential to deliver the service you have requested.
Optional cookies
Optional cookies help us understand how the site is used and provide additional features such as analytics, accessibility tools and translation. We will only set them if you accept.
Confidentiality
Data Protection and Patient Confidentiality
The practice is registered under the Data Protection Act and it is also the policy of the partnership to treat all information about patients and staff with the utmost sensitivity and confidentiality. We have a confidentiality policy, which the staff are required to observe at all times.
How we use your information
Medical confidentiality is the cornerstone of trust between doctor and patient and we keep your records secure and confidential. For your direct care either from the practice or within the NHS hospital service we imply your consent to pass on relevant clinical information to other professional staff involved in your direct care.
Only when there is a legal basis for the transfer of data we may pass limited and relevant information to other NHS organisations to improve the efficient management of the NHS or to aid medical research.
If you wish to object to the use of your data for these 'secondary; uses please speak to a member of staff.
Data Protection Impact Assessments (DPIAs)
Privacy impact assessments (PIAs) are tools which can help organisations identify the best (and most effective) methods to stay compliant with data protection obligations, and to ensure they can protect individuals’ privacy.
The practice’s designated Data Controller must carry out PIAs where the type of data processing is likely to result in an elevated risk of affecting the privacy, rights and freedoms of individuals. They can be used when starting a new project, implementing a new process, or making changes to a process. See our Data Protection Impact Assessment (DPIA) Procedure.