GDPR
GENERAL DATA PROTECTION REGULATION
The General Data Protection Regulation (GDPR) is a new law that determines how your personal data is processed and kept safe, and the legal rights that you have in relation to your own data.
The regulation applies from 25th May 2018, and will apply even after the UK leaves the EU.
We would like our patients to know that we are compliant with the new legislation.
Who is the Data controller for Acorn Medical Centre:
As your registered GP practice, we are the data controller for any personal data that we hold about you.
We are registered with the Information Commissioner’s Office (ICO) as a data controller and collects data for a variety of purposes. A copy of the registration is available through the https://ico.org.uk/esdwebpages/search (ICO website). You can search by our Practice name or ICO Data Protection Register number Registration number: Z511629X
Who is our Data Protection Officer:
Dr Ernest Norman-Williams
How we access/use your medical information:
Your Right of Access to Your Records:
The Data Protection Act and General Data Protection Regulations allows you to find out what information is held about you including information held within your medical records, either in electronic or physical format. This is known as the “right of subject access”. If you would like to have access to all or part of your records, you can make a SUBJECT ACCESS REQUEST in writing to the organisation that you believe holds your information. This can be your GP, or a provider that is or has delivered your treatment and care. You should however be aware that some details within your health records man be exempt from disclosure, however this will be in the interests of your wellbeing or to protect the identity of a third party.
If you would like access to your GP records please submit your Subject Access Request in writing to the:
DPO (Data Protection Officer)
Dr Ernest Norman-Williams
Address:
Acorn Medical Centre
149 Long Lane,
Hillingdon, Middlesex,
UB10 9JN
Or fill in our SUBJECT ACCESS REQUEST form (available under GDPR section on our website or at reception) and send to:
Data Protection Officer/Practice Manager
Acorn Medical Centre
149 Long Lane, Hillingdon
Middlesex, UB10 9JN
Confidentiality and how we use personal health information
Any information submitted by patients to healthcare or administration staff here at the medical centre will be handled in the strictest of confidence. All such information is stored in accordance with the new GDPR. You have the right to see your health records subject to any limitations in the law. for further information see GDPR Legislation.