General Data Protection Regulation 2016 (GDPR)
The General Data Protection Regulation 2016 (GDPR) and the UK Data Protection Act 2018 comes into on 25 May 2018 and will apply to the Trust as data controller, where we determine the purposes and means of processing personal data for both employees and patients, and also as data processors where we are responsible for processing personal data on behalf of another data controller.
The Trust has robust processes and systems to support compliance with the new laws, which includes keeping you informed about how your data is used.
For more information on this please refer to the Trust privacy notice
The Trust has also outlined in their policy statement how the new laws will affect the Trust and the way in which we process data.
GDPR Policy Statement