Lakenheath Surgery
135 High Street
Lakenheath
Suffolk
IP27 9EP
01842 860400
135 High Street
Lakenheath
Suffolk
IP27 9EP
01842 860400
Lakenheath Surgery takes your privacy very seriously. We are registered with the Information Commissioner’s Office as a Data Controller and our registration number is Z5612920
If you have any questions or wish to make a request in relation to your information, please contact us at;
Lakenheath Surgery
135 High Street
Lakenheath
IP27 9EP
Data Protection Officer:Emma Cooper Kafico Limited – emma.cooper35@nhs.net
Lakenheath Surgery aims to provide you with the highest quality health care. To do this we must keep records about you, your health and the care we have provided or plan to provide to you.
Your doctor and other health professionals caring for you, such as nurses or physiotherapists, keep records about your health and treatment so that they are able to provide you with the best possible care.
These records are called your ‘health care record’ and may be stored in paper form or on computer and electronic systems and may include Personal Data;
Healthcare providers are permitted to collect, store, use and share this information under Data Protection Legislation which has a specific section related to healthcare information.
To see a list of the partners we usually share with - click on:
Lakenheath Surgery Routine Sharing Partners
Lakenheath Surgery has signed a Suffolk Wide Information Sharing Agreement which allows health and social care providers to agree a secure and lawful way to share your information.
Along with activities related directly to your care, we also use information in ways which allow us to check that care is safe and provide data for the improvement and planning of services.
This practice records the calls coming into and going out of the practice.
It has been installed solely for training and monitoring purposes.
Recordings are retained and stored on the hard drives of the recording devices that are situated in secure areas and only the practice manager and those delivering technical support services will have access to the system.
Sometimes we will be required by law to share your information and will not always be able to discuss this with you directly. Examples might be for the purposes of detection or prevention of crime, where it is in the wider public interest, to safeguard children or vulnerable adults, reporting infectious diseases or where required by court order.
Data protection law provides you with a number of rights that the practice is committed to supporting you with;
You have the right to obtain:
confirmation that your information is being used, stored or shared by the practice
a copy of information held about you
We will respond to your request within one month of receipt or will tell you when it might take longer.
We are required to validate your identity including the identity of someone making a request on your behalf
We mainly use, store and share your information because we are permitted in order to deliver your healthcare but you do have a right to object to us doing this.
Where we are using, storing and sharing your information based on explicit consent you have provided, you have a right to withdraw that consent at any time.
Our Data Protection Officer will be happy to speak with you about any concerns you have.
If information about you is incorrect, you are entitled to request that we correct it
There may be occasions, where we are required by law to maintain the original information – our Data Protection Officer will talk to you about this and you may request that the information is not used during this time
We will respond to your request within one month of receipt or will tell you when it might take longer.
You also have the right to make complaints and request investigations into the way your information is used. Please contact our Data Protection Officer or visit the link below for more information.
For more detailed information on your rights visit https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/
Sometimes your information will be used to identify whether you need particular support from us.
Those involved in your care might look at particular ‘indicators’ (such as particular conditions) and contact you or take action for healthcare purposes. For example, this might be to prevent you from having to visit accident and emergency by supporting you in your own home or in the community.
We will use automated technology to help us to identify people that might require support but ultimately, the decision about how or whether to provide extra support you is made by those involved in your care.
Our Data Protection Officer will be happy to speak to you about this if you have concerns or objections.
The practice will use third parties to provide services that involve your information such as;
Data analytics or warehousing (these allow us to make decisions about care or see how effectively the practice is run – personal data will never be sold or made available to organisations not related to your care delivery)
We have contracts in place with these third parties that prevent them from using it in any other way that instructed. These contracts also require them to maintain good standards of security to ensure your confidentiality.
Please visit this link to find out more about our sharing partners and providers.
We are committed to ensuring the security and confidentiality of your information. There are a number of ways we do this;
Staff receive annual training about protecting and using personal data
Policies are in place for staff to follow and are regularly reviewed
We check that only the minimum amount of data is shared or accessed
We use ‘smartcards’ to access systems, this helps to ensure that the right people are accessing data – people with a ‘need to know’
We use encrypted emails and storage which would make it difficult for someone to ‘intercept’ your information
We report and manage incidents to make sure we learn from them and improve
We put in place contracts that require providers and suppliers to protect your data as well
We do not send your data outside of the EEA
In line with the Department of Health Code, we will retain / store your health record for your lifetime. When a patient dies, we will review the record and generally it will be destroyed 10 years later, unless there is a reason to keep it for longer.
If you move away or register with another practice, we will send your records to the new practice.
Diabetic Eye Screening Services
Find out more about our Diabetic Eye Screening
https://www.kafico.co.uk/diabetic-eye-screening
The practice shares your diabetes related data with the Diabetic Eye Screening Programme operated by Health Intelligence (commissioned by NHS England). This supports your invitation for eye screening (where you are eligible and referred by the practice) and ongoing care by the screening programme. This data may be shared with any hospital eye services you are under the care of to support further treatment and with other healthcare professionals involved in your care, for example your Diabetologist.
For further information, take a look at Health Intelligence’s Privacy Notice on the diabetic eye screening website: www.eadesp.co.uk
Lakenheath Surgery
135 High Street
Lakenheath
Suffolk
IP27 9EP
01842 860400
Appointments
Tel: 01842 860400
General Enquiries & Emergencies
Tel: 01842 860400
Lakenheath Surgery
135 High Street
Lakenheath
Suffolk
IP27 9EP
01842 860400
Monday: 08.00 – 18.30
Tuesday: 08.00 – 18.30
Wednesday: 08.00 – 18.30
Thursday: 08.00 – 18.30
Friday: 08.00 – 18.30
Bank Holidays – Closed