As we already look after your records carefully and maintain patient confidentiality, the GDPR  just means that we just need to demonstrate how we are being careful.

The law applies to all personal data that we hold, including staff and associates as well as patients.

In order to adhere to the GDPR regulations we  now have a number of policies in place:

Data protection privacy notice – patients

Data security policy – practice

Access to information held by the practice

Confidentiality policy

Records management policy (v3)