General Data Protection Regulations (GDPR)

What is the GDPR?

GDPR is a regulation in EU law on data protection and privacy for all individuals within the European Union. It addresses the export of personal data outside the EU and EEA. The GDPR aims primarily to give control to citizens and residents over their personal data

We hold sensitive and confidential data about you in our computer system, we have a duty of care to ensure we protect this information for you. We are a Data Controller of your information. This means we are responsible for collecting, storing and handling your personal and healthcare information when you register with us as a patient.

We use your personal and healthcare information in the following ways:

• when we need to speak to, or contact other doctors, consultants, nurses or any other medical/healthcare professional or organisation during the course of your diagnosis or treatment or on going healthcare;
• when we are required by Law to hand over your information to any other organisation, such as the police, by court order, solicitors, or immigration enforcement.

We will never pass on your personal information to anyone else who does not need it, or has no right to it, unless you give us clear consent to do so. For further information please review our Privacy Notice Policy