Data Protection Policy for Patients
Sidegate Dental Practice processes personal information that relates to patients and is therefore required by law to comply with the Data Protection Act 2017 (GDPR), which protects your privacy and ensures that your personal information is processed fairly and lawfully.
Our Commitment to Patients
Sidegate Dental Practice is committed to ensuring that it complies with the DPA and applies ethical principles to all aspects of its work to protect the interests of patients and maintain the confidentiality and security of any personal information held in any form by the practice.
Why Does the Practice Hold Personal Information About Me?
We keep information about you to:
- ensure the dental team can contact you easily;
- provide you with the best possible dental care;
- provide care for you under the NHS and enable administration of the NHS.
What Personal Information is Kept?
Personal information includes facts (e.g. treatment you have had) and opinions (e.g. any concerns you or your dentist might have about your dental health). To provide the best possible care for you, accurate and comprehensive personal information is required. The following records are kept and updated regularly:
- personal information and contact details, including your name, address and date of birth;
- dental, social and medical histories (e.g. past or current medical conditions, current medication, the name of your GP);
- results of the examination of your mouth and oral health, including x-rays and clinical photographs;
- information about appointments;
- any treatments and their costs;
- any proposed care, including advice we give to you and referrals you might need;
- any concerns you or your dental team might have;
- details of your consent for specific procedures;
- correspondence with other healthcare workers that relates to your care.
How is My Personal Information Processed?
Sharing Relevant Information
To provide you with appropriate care, we might need to share personal data with:
- another dentist or health professional who is caring for you;
- your GP;
- a laboratory;
- NHS payment authorities;
- the Inland Revenue;
- the Benefits Agency, if you are claiming exemption or remission from NHS charges;
- a private dental scheme, if you are a member.
In these cases, only the minimum information required will be shared. Rarely, the law requires us to pass on information to prevent serious crime or injury. Where possible, we will inform you of requests to share personal information.
Storage and Retention of Personal Information
We keep patient records for adult patients for a minimum of 11 years and for child patients for either 11 years or until the child is 25 years of age, whichever is longer.
Personal information is stored on a secure password-protected practice computer system. Only authorised practice staff have access to these systems. Back-ups of these data are made regularly, in line with the DPA.
Your Right to Access Personal Information