Listed below are all the practice policies regarding data protection and security.

This policy covers:

  • Our data protection principles and commitment to common law and legislative compliance;
  • procedures for data protection by design and by default.

The purpose of this document is to outline how we prevent data security breaches and how we react to them when prevention is not possible.

This policy outlines the following procedures:

  • Procedures for ensuring data accuracy;
  • Procedures for correcting errors.

This policy will ensure that both service user & staff records are properly created, accessible and available for use and that they are disposed of in a secure and timely fashion.

This policy provides the Practice with a process for the management of requests for personal information (for living individuals) under the Data Protection Act (DPA) 2018, the General Data Protection Regulations (GDPR) and (for deceased individuals) the Access to Health Records Act 1990

This document sets out our policy for the protection of the confidentiality, integrity and availability of the network, establishes responsibilities for network security and provides reference to documentation relevant to this policy.