The General Data Protection Regulations (GDPR) are effective in the UK from the 25th May 2018. The GDPR and Data Protection Act (DPA) 2018 replaced the previous Data Protection Act.
The GDPR are designed to harmonise data privacy law across Europe. The aim is to protect citizens from privacy and data breaches.
The key principles of the current DPA remain unchanged, but some areas of legislation have been strengthened. As the practice data handling policies and procedures were already designed to be compliant with the DPA, very little has changed. We have however issued a new Privacy Notice with the assistance of the NHS South, Central and West Commissioning Support Unit to explain what we do in more detail.
Certain elements of data sharing have been varied by authority of the UK Government during the Coronavirus pandemic. More details in the linked documents below.
Covid-19 and Your Information Supplementary Privacy Notice
How we use your Information 2020
Privacy Notice 2020
Data Extraction re Covid 19
Privacy Notice for Job Applicants
Addendum to Cookham Medical Centre Privacy Notice 2021
CMC Privacy Notice 2021
National Data Opt-Out Follow the link below for information on this
The Privacy Notice of the Practice now also includes reference to the data extractions for GPDPR - more details in link below to NHS Digital
General Practice Data for Planning and Research: GP Practice Privacy Notice - NHS Digital
Please note that from August 2021 - calls are recorded for training and monitoring purposes - these will be deleted on a rolling basis with a maximum retention time of 3 months.