General Data Protection Regulation #GDPR
Purpose and legal basis for processing
Care Right Now CIC does not routinely process personal sensitive information.
When we carry out clinical advice and support projects these projects all have their own Governance Structure which includes your rights under GDPR. These will appear at the bottom of this page.
Information Governance and GDPR support work
We provide Information Governance and GDPR support services for care providers and system suppliers.In these cases we may hold pseudo-anonysed personal information, which we keep secure and do not pass on except to the source of the information.We keep logs of the information and delete it after 5 years.
What we need
We’ll need your name and email address and the name of your organisation if you sign up to an email list. This information will not be shared with any third parties, and you will only receive the emails you signed up for. In addition you can unsubscribe at any time, no questions asked.
What we do with it
We’ll use your email address to send you the updates on the area(s) you have subscribed for.
How long we keep it
Email list information is stored indefinitely, or ‘cleaned’ when the email address is no longer valid, or can be deleted by the data subject at any time. If the company closes this information will be permanently deleted.
For the Information Governance and support services we delete pseudo-anomysed personal information after one year. If it is related to a data breach we keep a log of the time date and nature of the concerns and our response to it for 10 years, or longer if necessary.
What are your rights?
This is a general description of your rights under GDPR
Do we use any data processors?
Do you have a Data Protection Officer?
Yes. Steve Turner who can be contacted at firstname.lastname@example.org or on 07931 191 330
What do I do if I have any queries?
You can contact Steve Turner (details shown above) or if you have a concern that hasn’t been addressed please contact the information Commissioner on 0303 123 1113.
GDPR Support for Community Pharmacies:
No sensitive personal data is stored by Care Right Now CIC in relation to these contracts. If Care Right Now CIC and its employees are involved in managing incidents in relation to this contract, records are kept in pseudo-anonymised format. The key to linking the data subject is not stored on Care Right Now CIC premises. If any exception to this occurs it will be logged and reported.
Care Meds Ltd. Information Governance Lead and Data Protection Officer:
No sensitive personal data is stored by Care Right Now CIC in relation to this contract. If Care Right Now CIC and its employees are involved in managing incidents in relation to this contract, records are kept in pseudo-anonymised format. The key to linking the data subject is not stored on Care Right Now CIC premises. If any exception to this occurs it will be logged and reported.
Mental capacity assessor for tsf Consultants:
Steve Turner handles sensitive information during the course of the mental capacity assessment process. This is kept in a locked area where there is no public access, or on a PC which is only accessed by Steve Turner and is password protected. Communication containing sensitive information and document handling with tsf is done via a secure server. When sensitive information is carried off site (e.g. for assessments) every effort is made to ensure it’s security, and it is returned to safe storage at the earliest possible opportunity.
Once the assessment report is finalised all sensitive information held by Steve Turner (reports and notes) is deleted or destroyed, with the exception of a job sheet which has an ‘MCA number’ of the person being assessed on it. The MCA number can be linked to the data subject via tsf Consultants (pseudo-anonysation).
Clinical Projects Underway:
None at present (16/7/2018)