Data protection code of practice for patients

This practice complies with the Data Protection Act 1998 and this policy describes our procedures for ensuring that personal information about patients is processed fairly and lawfully.

Personal data that we hold

We must keep comprehensive and accurate personal data about you to provide you with a high standard of appropriate dental care. We also need to process personal data about you to provide care under NHS arrangements and to ensure the proper management and administration of the NHS.

The personal data that we hold includes:

  • Personal details such as your date of birth, National Insurance number/NHS number, address, telephone number and your general medical practitioner
  • Your past and current medical and dental health
  • Radiographs, clinical photographs, and study models
  • Information about the treatment that we have provided or propose to provide and its cost
  • Notes of conversations about your care
  • Records of consent to treatment
  • Correspondence with other health care professionals relating to you, for example in the hospital or community services.

Processing data

We will process this personal data in the following way:

Retaining information

We will retain your dental records while you are a practice patient and after you cease to be a patient, for at least eleven years or, for children, until the age of 25, whichever is the longer.

Security of information

Personal data about you is held in the practice computer system and/or in a manual filing system. The information is not accessible to the public; only authorised members of staff have access to it. Staff are trained in their legal responsibilities under the Data Protection Act and practical procedures for maintaining confidentiality.

We take precautions to keep the practice premises, filing systems and computers physically secure. Our computer system has secure audit trails and we back-up information routinely.

Disclosure of information

To provide proper and safe dental care, we may need to disclose personal information about you to:

  • Your general medical practitioner
  • The hospital or community dental services
  • Other health professionals caring for you
  • NHS payment authorities
  • HM Revenue and Customs
  • The Department for Work and Pensions and its agencies, where you are claiming exemption or remission from NHS charges
  • Private dental schemes of which you are a member.

Where possible, you will be informed of these requests for disclosure.

Disclosure will take place on a ‘need-to-know’ basis. We will only provide information to individuals or organisations who need it to provide care to you or to ensure the proper administration of government (whose personnel are covered by strict confidentiality rules). We will only disclose information that the recipient needs to have.

In limited circumstances, or if required by law or court order, personal data may be disclosed to a third party not connected with your health care.

In all other situations, disclosure that is not covered by this Code of Practice will only occur when we have your specific consent.

Access

You can access the data that we hold about you and receive a copy by submitting a written request. We will provide the requested information (and an explanation if you require it) within 20 days of receiving your request and fee (where payable).

If you do not agree

If you do not wish personal data that we hold about you to be disclosed or used in the way that is described in this Code, you should discuss the matter with your dentist. You should be aware, however, that objecting to how we process your information may affect our ability to provide you with dental care.

Data protection privacy notice for patients

In providing your dental care and treatment, we will ask for information about you and your health. Occasionally, we may receive information from other providers who have been involved in providing your care. This privacy notice describes the type of personal information we hold, why we hold it and what we do with it.

Information that we collect

We may collect the following information about you:

  • Personal details such as your name, date of birth, national insurance number, NHS number, address, telephone number and email address
  • Information about your dental and general health, including
  • Clinical records made by dentists and other dental professionals involved with your care and treatment
  • X-rays, clinical photographs, digital scans of your mouth and teeth, and study models
  • Medical and dental histories
  • Treatment plans and consent
  • Notes of conversations with you about your care
  • Dates of your appointments
  • Details of any complaints you have made and how these complaints were dealt with
  • Correspondence with other health professionals or institutions
  • Details of the fees we have charged, the amounts you have paid and some payment details

John Hume-Spry is responsible for keeping secure the information about you that we hold.

Our data protection office, Nottinghamshire and Derbyshire area Team ensure that the practice complies with data protection requirements to ensure that we collect, use, store and dispose of your information responsibly.

Those at the practice who have access to your information include dentists and other dental professionals involved with your care and treatment, and the reception staff responsible for the management and administration of the practice.

How we use your information

To provide you with the dental care and treatment that you need, we require up-to-date and accurate information about you.

We will share your information with the NHS and Practice Plan in connection with your dental treatment.

We will seek your preference for how we contact you about your dental care. Our usual methods are telephone, email, or letter.

Sharing information

Your information is normally used only by those working at the practice but there may be instances where we need to share it – for example, with:

  • Your doctor
  • The hospital or community dental services or other health professionals caring for you
  • NHS payment authorities
  • The Department for Work and Pensions and its agencies, where you are claiming exemption or remission from NHS charges
  • Private dental schemes of which you are a member.

We will only disclose your information on a need-to-know basis and will limit any information that we share to the minimum necessary.

In certain circumstances or if required by law, we may need to disclose your information to a third party not connected with your health care, including HMRC or other law enforcement or government agencies

Keeping your information safe

We store your personal information securely on our practice computer system. Your information cannot be accessed by those who do not work at the practice; only those working at the practice have access to your information. They understand their legal responsibility to maintain confidentiality and follow practice procedures to ensure this.

We take precautions to ensure security of the practice premises, the practice filing systems and computers. We use high-quality specialist dental software to record and use your personal information safely and effectively. Our computer system has a secure audit trail and we back-up information routinely.

We keep your records for 10 years after the date of your last visit to the Practice or until you reach the age of 25 years, whichever is the longer.

Access to your information and other rights

You have a right to access the information that we hold about you and to receive a copy. You should submit your request to the practice in writing or by email. We do not usually charge you for copies of your information; if we pass on a charge, we will explain the reasons.

You can also request us to

  • Correct any information that you believe is inaccurate or incomplete. If we have disclosed that information to a third party, we will let them know about the change
  • Erase information we hold although you should be aware that, for legal reasons, we may be unable to erase certain information (for example, information about your dental treatment
  • Stop using your information – for example, sending you reminders for appointments or information about our service
  • Supply your information electronically to another dentist.

If you do not agree

If you do not wish us to use your personal information as described, you should discuss the matter with your dentist. If you object to the way that we collect and use your information, we may not be able to continue to provide your dental care.

If you have any concerns about how we use your information and you do not feel able to discuss it with your dentist or anyone at the practice, you should contact The Information Commissioner’s Office (ICO), Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF (0303 123 1113 or 01625 545745).

Registered in Northern Ireland Reg: 1st Floor, 46 Hill Street, Belfast, BT1 2LB
Reg number: NI604861

Practice Address: Delph Dental Practice, Unit 3 The Delph Centre, Market Street, Swadlincote, Derbyshire, DE11 9DA

Privacy Policy

|

Cookies Policy

|

Complaints Procedure

|

Terms & Conditions
© Copyright Delph Dental Practice 2022 | Website by pro.found Websites & Marketing Services