Confidentiality/Data Protection

Access to Patient Information

We respect your right to privacy and keep all your health information confidential and secure. It is important that the NHS keeps accurate and up-to-date records about your health and treatment so that those treating you can provide the best possible care. We have a fully computerised medical record system which means information about your healthcare is held on a secure server, which is held at Wolverhampton City Clinical Commissioning Group (not at the practice).

You have the right to know what information we hold about you. The practice is registered and complies with the Data Protection Act 1998 (this changes to General Data Protection Regulation – GDPR, in May 2018). Any request for access to notes by a patient, patient’s representative or outside body will be dealt with in accordance with the Act. Please contact the Practice Manager for further information.

Subject Access Requests

Please enquire if you wish to see or obtain a copy of your medical records, under the new GDPR you do not have to apply in writing as before, although you will be asked for ID verification prior to accessing information. You can view your medical records online by using ‘Patient Access’ please enquire for further details.

If you are referred to a hospital specialist you are also welcome to request a copy of the referral letter. NHS Connecting for Health is currently developing the National Care Records Service, which will create a Summary Care Record (SCR) for each individual patient, to be held centrally. At this pilot stage the record is limited to current medication, known allergies and adverse reactions. Eventually the aim is to enable healthcare staff jointly involved in your care, such as your GP and your hospital consultant, to easily access and share information through this national record.

You have the right to withdraw your consent to information being shared or uploaded onto the national spine (Summary Care Record). If you wish to discuss this or opt out, or request an ‘opt out form’ please ask to see the practice managers, please ask at reception.

Consent– We will be contacting patients via our texting service to seek consent to contact you when appropriate. Please confirm your contact preferences details with us.

GDPR– The Practice is working towards compliance with new General Data Protection Regulation (GDPR) from 25.5.2018 and replaces The Data Protection Act 1998. The practice has appointed Dr Mittal as its Data Protection Officer, supported by the practice managers.

GDPR – Privacy Statement (see below)
This information explains what information is captured from the people visiting the website and explains how it is used and protected.

Data Protection Officer – The Practice has appointed PCDC to be its Data Protection Officer, as we are unable to provide this service ourselves, as a small practice. As a GP Practice we are a public authority and carry out certain processing activities. They assist with internal compliance, advise on Data Protection  obligations and  provide advise on Data Protection Impact Assessments. They act as a contact point for data subjects and the ICO – Information Commissioners Office.

PCDC, MBV Enterprise Centre, 6 David Lane, Nottingham, Nottinghamshire, NG6 0JU
Tel: 0115 838 6770
www.pcdc.org.uk

If you wish to find out more about Information Governance, please contact the practice on [email protected] & mark your email  ‘for the attention of the practice managers’