- Details
This section explains why information is collected about you by Ashford and St. Peter’s Hospitals NHS Foundation Trust and the ways in which this information may be used.
You may also want to read the following:
- Accessing your Health Records
- Accessing to Non-Health Information
- Privacy Notice
- Sharing Information
What is a privacy notice?
A Privacy Notice is a statement by the Trust to patients, visitors, carers, and the public that describes how we collect, use, retain and disclose personal information that we hold about you. This privacy notice is part of our commitment to ensure that we process your personal information fairly and lawfully. This notice also explains what rights you have to control how we use your information.
The Data Protection Act and General Data Protection Regulation (GDPR) controls how your personal information is used by organisations. Under the Act, the Trust is defined as a ‘data controller’ of personal information that we hold. We collect information to help us provide and manage healthcare for our patients.
In order for the Trust to be able to process your information lawfully, we are obliged to satisfy a condition under Article 6 and, where special category data (sensitive information) is being processed, under Article 9 of the GDPR. The following legal bases will apply: 6(1)(e) ‘for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller’; and: 9(2)(h) ‘Processing is necessary for the purposes of preventative or occupational medicine, for assessing the working capacity of the employee, medical diagnosis, the provision of health or social care or treatment or management of health or social care systems and services on the basis of Union or Member State law or a contract with a health professional’.
The trust is registered with the Information Commissioner’s Office (registration number ZA030561).
