When we process your personal data, North Staffordshire Combined Healthcare NHS Trust is the Data Controller.
Registration Number: Z8606519
Date Registered: 08 November 2004 Registration Expires: 7 November 2020
Data Controller: North Staffordshire Combined Healthcare NHS Trust.
Address:
Trust Headquarters
Lawton House
Bellringer Road
Trentham
Stoke-On-Trent
ST4 8HH
As a Data Controller the Trust has a duty to:
Things you can do to help us:
Personal data is information about an identifiable living person such as name, address, telephone number, date of birth, bank details and information held about a person. This can include but is not limited to written correspondence, e-mails, photographs, audio recordings and video recordings.
Information classed as sensitive personal data includes details of ethnic origin, religious beliefs, sexual orientation, trade union membership, health data and biometric and genetic data.
For some of our services, we need to collect personal data so we can get in touch, or provide a service. The Trust is allowed to use your personal data only in line with the law. The legal framework includes:
There are many more laws surrounding data protection. In many cases there is a statutory requirement to process your data without your consent, but we must always act within the law and never pass on your details without your consent or with another legally justifiable reason.
Where we do not directly provide the service, we may need to pass your personal data onto the organisation that does. These providers are under contract and have to keep your details safe and secure, and use them only to provide the service.
We will use the information you provide for the following purposes:
We share basic information between services within the Trust so that we can keep our information on you as up-to-date as possible and so that we can improve our services to you. For example, if you tell a clinical team you have moved house, they will pass this information on to other parts of the Trust.
Even though our systems are joined-up, we ensure that staff within the Trust can only access the information they need to do their job.
There are a number of information sharing agreements in place which are designed to assist with the legitimate sharing of your information between the Trust and other organisations appropriately and always in line with the law.
Under certain laws, we are required to pass your data to law enforcement organisations such as, but not limited to, the police, the Immigration Service or Her Majesty’s Revenue & Customs.
We also have to make data submissions and statistical collections to several Government departments by law.
Your personal data may be transferred outside of the UK, for example, if the Trust uses a cloud service that has host servers located in the United States. If your data is transferred, it is done so under contract and a Data Processing Agreement states what the required protection to your personal data under EU Data Protection law is.
North Staffordshire Combined Healthcare NHS Trust has a duty to improve the health of the population we serve.
To help us do this, we use data and information from a range of sources including the Office for National Statistics, NHS Digital, Clinical Commissioning Groups and other hospitals to understand more about the nature and causes of ill health in Staffordshire.
We may also share personal data without consent to prevent the spread of infectious diseases, in the vital interests of any individuals or when it is in the overriding public interest.
The Trust is under a duty to protect the public funds it administers, and to this end may use the information you have provided for the prevention and detection of fraud. It may also share this information with other bodies responsible for auditing or administering public funds for these purposes.
We are working more closely in partnership with health (doctors, hospitals etc.) as health and social care services become more joined up. The Government says that we must share your NHS number with each other. When we work closely with our health partners on things such as Better Care Together Programme, Social Workers and health professionals may share data with part of your care team for your direct care. We will try, wherever possible, to do so with your consent. Sometimes we may need to share without telling you, for legal reasons, or when it is in your vital interest.
We may introduce new technologies that capture and store personal data e.g. biometric scanners, body worn video cameras etc. An appropriate assessment such as a Data Protection Impact Assessment will be carried out when such technologies, or new systems that capture personal data are introduced.
We will use the Internet to communicate with the public and promote public participation. Through our social media accounts and website, we will post photos, videos and sound recordings of our work and events, which may sometimes include personal data. Although we often try to seek consent, this may not always be possible when capturing large crowds or public street scenes. If you are ever unhappy about being included in any of these publications, please contact us.
We may require you to register and be authenticated with us in order for you to access certain services on our internet. Where this is required a privacy statement will set out our commitment to you when you access our services via the internet.
As part of our role to promote awareness of local health and public health services and issues, we have a legitimate interest in using e-newsletters and other electronic communications. Everyone who receives these communications is always offered the option to unsubscribe or opt out of receiving them. We may also send you service announcements in this way.
We will only hold your personal information for as long as necessary for business purposes or if we are required to keep it by law. Upon request for information from you we will inform you whether your personal data is processed by the Trust. A copy of this information can be requested and subject to relevant law, will be provided.
You can find the address below if you want to ask for a copy.
You can also use this address to ask the Trust to:
If you wish to ask the Trust about a data protection issue, request a copy of your data, or you have concerns about the processing of your personal data by the Trust, you can contact the:-
Information Governance Team or the Data Protection Officer
Health Records Department
Lawton House
Bellringer Road
Trentham
Stoke-On-Trent ST4 8HH
Tel: 0300 123 1535
E-mail: [email protected]
If you have any queries or concerns about how we use your information, please speak to the staff involved in your care. More detailed questions about how we use your information which cannot be discussed or resolved by a member of staff can be discussed with the Patient Experience Team on 0800 389 9676
For more information about Data Protection, or if you are unsatisfied with the way the Trust has handled your personal information after you have complained, you can contact the national regulator, the Information Commissioner’s Office, at:
The Office of the Information Commissioner
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AX
www.ico.org.uk
E-mail: [email protected]
We keep our privacy notice under regular review. This privacy notice was last updated on 11 November 2019.
