GDPR - Privacy Notice
Rowantree Medical Practice take privacy very seriously and we are currently updating all our records and processes to ensure that we are fully meeting the data protection standards introduced by the General Data Protection Regulation (GDPR) on 25th May 2018.
We are registered as data processors with the Information Commissioner's Office (ICO).
Our practice will need to collect your personal information to provide healthcare services to you. The information we will collect about you includes your name, date of birth, address and contact details.
You have the right under GDPR to request access to, and correction, of your personal information. We require you to put this request in writing by completing a Subject Access Request (SAR). The practice will deal with the request within 28 days.
Your medical records are held in the strictest confidence. Information is not passed on without your consent, unless it is within the confines of the NHS, or by legal requirement, or it is in the public interest. The Practice is computerised and registered under the Data Protection Act 1998. It is a practice and legal requirement that all staff maintain confidentiality of patients records.
The HPSSNI introduced the ECRS in April 2011. This means that unless a form has been sent to the practice with holding access, A&E Depts. hospital pharmacy depts and the Out of Hours service can access patient records to obtain the following information: Name, Address, DoB. current medication and known allergies.