General Data Protection Regulations (GDPR) and Data Protection Act 2018
The GDPR forms part of the data protection regime in the UK, together with the new Data Protection Act 2018 (DPA 2018) both of which apply from 25 May 2018. The Information Commissioner’s Office provide useful information about the new legislative framework which can be accessed by clicking on the following web links:
The CCG is currently reviewing its policies and processes to ensure it is compliant with the new legislation. This includes reviewing our current privacy notice, which is the document published below that details what information we collect about you, what types of personal data we handle and what we do with that information, including your rights in relation to the information we hold. Whilst we progress with reviewing our policies and processes to ensure they are compliant with the new legislation, we will continue to ensure we respect your right with regards to data privacy and data protection when you communicate with us through for instance, our website, offline programs, in writing, over the phone and at events.
One of the requirements of the new legislation is to have a nominated Data Protection Officer, the CCG’s Data Protection Officer is Daljit Bains, Head of Corporate Governance and Legal Affairs, who can be contacted via the Contact Us page on our website.
How your information is used
The CCG’s Privacy Notice tells you about information we collect and hold about you, what we do with it, how we look after it and who we might share it with. It covers information we collect directly from you or receive from other individuals or organisations. This notice is not exhaustive. However, we are happy to provide any additional information or explanation needed, please contact using the details on the Contact Us page.
Section 1: What is a Privacy Notice?
- What is a Privacy Notice?
- Complaints about how we process your personal information
- Changes to our Privacy Notice
- Data Protection Notification
- How to contact us
Section 2: What information do we collect about you?
- What information do we collect about you?
- How the NHS and care services use your information and your choices
- The National Fraud Initiative
- Legal basis for processing
- Automated Decision Making
- Retaining information
- Security of your information
Section 3: Your rights
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- Rights in relation to automated decision making and profiling
- The right to withdrawn consent
Appendix 1: How will NHS East Leicestershire and Rutland CCG use information about you?
Each of the following links will open a separate PDF document
- NHS Continuing Healthcare
- Individual Funding Requests
- Complaints and Enquiries
- MP Enquiries
- Legal Processes and Claims
- Communications, Stakeholder Engagement and Patient Experience
- Improving Quality and Patient Safety
- Care and Treatment Reviews
- Reimbursements to patients
- Invoice validation
- Risk Stratification
- NHS Digital