General Data Protection Regulation is a new law that determines how we can process your personal data that is held by the practice. Any organisation that holds personal data about an UK/EU citizen is required to be GDPR compliant.

Our Privacy Policy outlines all of the information you need regarding GDPR and also how you can ‘opt out’ of certain processes should you wish to.

If you require any more information on GDPR, please visit the NHS Digital or Information Commissioner’s Office website:

• NHS Digital: www.digital.nhs.uk
• Information Commisioner’s Office: www.ico.org.uk

For further information, please see the below leaflets:

• Subject Access Request Policy
• Digitisation of Paper Medical Records
• Access to Medical Records under the Data Protection Act