New policies

Outline

Appendix – TEMPLATE: Privacy Notice

[Care 24x Limited] is a [INSERT] business, (owned by the………… family, part of the ……………. Group) [AMEND AS NECESSARY]. This privacy notice explains how we use any personal information we collect about you, during the information gathering process known as an Assessment of Need. Topics covered are:

What information do we collect about you?

How do we use such information?

Access to your information and correction

What information do we collect about you?

The nature of our service means that very personal and sensitive information is discussed, openly and honestly, to ensure we can meet your health and social care needs in ways that are unique to your circumstances. The specific type of information is required for us to meet our legal and regulatory obligations as a registered provider.

The Lawful Bases which we use are contained within the Data Protection Act 2018 and is/are

[INSERT HERE YOUR LAWFUL BASES- SEE SECTION 1 INFORMATION]

How information about you will be used

We may share information regarding your care with those who have a need to know, namely Health Professionals, such as GP’s, District Nurses, Hospitals etc., Local Authorities, includes departments such as Social Services, Housing, Day Centres etc. Any relevant person identified by you, such as an L.P.A., and our staff. We would like to contact you about the services we provide, please indicate below your preferred contact method.

Post Email Phone SMS

We will not share your information with anyone except those indicated above unless required by law. If you do not wish this information to be shared, please indicate below.

Yes No

Personal information supplied to us is used in a number of ways, for example.

To agree on a Care Plan

To review your care needs

To monitor your medication

To help us improve our services

How will we use this information?

Upon completion of your Assessment of Need, we compile a Care Plan which sets out tasks, aspirations and outcomes to meet all your identified needs and this is regularly reviewed and updated. This includes liaising with all those involved in your care such as family, your representative relevant health and social care colleagues and other professionals.

Access to your information and corrections

All files held in your name are available for your perusal and you can ask us to remove inaccurate information. Please email or write to us at (Insert contact details here). Where you use our website, cookies are text files that collect log on information and visitor behaviour information. Cookies track visitor use and compile statistical reports on website activity. You can set your browser to accept or decline cookies. Please be aware that a decline in preference may mean a loss of function in some of our website features.

For further information on cookies visit: www.aboutcookies.org or www.allaboutcookies.org

[THIS PRIVACY NOTICE CAN BE USED FOR INDIVIDUAL SERVICE USERS AND A COPY KEPT IN THEIR FILE OR BY OMITTING SERVICE USER NAME ETC., AS A PRIVACY NOTICE TO DISPLAY OR INSERT WHERE NECESSARY. INSERT OR DELETE SECTION BELOW AS NEEDED]

NAME/SIGNATURE [Service User] TEL:

ADDRESS:

POSTCODE: D.O.B.

Appendix 2 Data Breach Plan

Preparing for a personal data breach

Allocated responsibility for managing breaches [INSERT NAME]

The designated data lead or data controller will assess whether there is a risk to people’s data rights and freedoms and if there is, they will notify the ICO.

Responding to a personal data breach

What data has been breached and who does it affect?

What is the likely risk to individuals as a result of a breach?

Inform affected individuals about a breach when their rights and freedoms are at high risk.

Confirm names below.

*Affected individuals must be informed without undue delay.

We have informed the relevant supervisory authority of our processing activities.

YES NO

If not, you must do so as soon as possible

Notify the ICO of a breach within 72 hours of becoming aware of it, even if we do not have all the details yet.

Confirm that ICO has been informed within 72 hours

YES the ICO was informed within 72 hours
NO, the ICO was not informed within 72 hours
If NO – what action was taken?

What information was given to the ICO about a breach?

What advice and Support have been provided to individuals to help them protect themselves from its effects?

*Note – all breaches, even if they don’t all need to be reported have been recorded.

Lessons learnt and actions taken to prevent further breaches of this nature.

Signed:……………………………………………………….

DP lead

Date: ……………………………………………………………

Return to Policy Heading (Ctrl+Click) – Policy Heading

Scroll to Top