Medical Records – Data Protection Act
We need to hold personal information about you on our computer system, and in paper records, to help us to look after your health needs, and your doctor is responsible for their accuracy and safekeeping.
Doctors and staff in the Practice have access to your medical records to enable them to do their jobs. From time to time, information may be shared with others involved in your care if necessary. Anyone with access to your record is properly trained in confidentiality issues and is governed by both a legal and contractual duty to keep your details private.
All information about you is held securely and appropriate safeguards are in place to prevent accidental loss.
In some circumstances, we may be requested by law to release your details to statutory or other official bodies, for example if a court order is presented, or in the case of public health issues. In other circumstances, you may be required to give written consent before information is released - such as for medical reports for insurance, solicitors etc.
To ensure your privacy, we will not disclose information over the telephone or fax unless we are sure that we are talking to you. Information will not be disclosed to family, friends, or spouses unless we have prior written consent, and we do not leave messages with others.
Accessing you records
You have a right to see your records if you wish. Please ask at reception if you would like further details. An appointment will be required. In some circumstances a fee may be payable.
Under section seven of the Data Protection Act 1998, patients have the right to apply for access to their medical records (subject to exemptions).
Any patient wishing to access their medical records should make an appointment with the doctor they consult with most regularly to discuss the request. There will be a charge of £10 to view medical records and a further charge for copies.
Patient can now have online access to their medical records through Patient Access. Please ask for details at Reception and visit www.patient.co.uk/access
Dr A Singh is responsible for supervising all aspects of the data-handling policies in the Practice.
All work undertaken at the practice is of a confidential nature and will not be discussed or divulged outside the practice, without the written consent of the patient.
There is a designated individual (the data controller) responsible for confidentiality: Mrs G Fraser, Practice Manager.
Freedom of Information Act 2000
This Practice will comply with the relevant sections of the Freedom of Information Act 2000, and has a policy in place to process requests according to the regulations within the act.
The list of charges, which will be applied to information requests, is also specified in our publication scheme. Methods of information provision are detailed in the publication scheme.
Dr Amandeep Singh is the named lead Partner for Information Governance and Data Protection. He is also the named Caldicott Guardian and Freedom of Information Act lead.