Data Protection

Privacy Notice

At Crown Cottage Dental Care we take your privacy seriously and we will only use your personal data to manage your dental health. In accordance with the General data protection regulations (GDPR), we have implemented this privacy notice to inform you of the types of data we process about you.  We also include within the notice the reasons for processing your data and the lawful basis that permits us to process it.

 

Types of Data Collected

The information that we would need to collect and store securely would include:

Name

DOB

Address

Telephone number

Mobile number

Email

Medical history

 

We would also require regular medical history updates this would include any serious illnesses or surgery, allergies and a list of any current medication taken. We would also require the name and address of your GP. The reason for this is to ensure your safety whilst under our care when visiting the practice. We would also give advice on healthy alternatives and if necessary offer support.

 

Why we process data and how we would contact you

Process means we obtain, store, update and archive your data. We do this to ensure we provide you with appropriate, high quality, safe and effective dental care. We will contact you to advise when your dental examination is due and we will also remind you of appointments that have been booked. We would contact you through the following methods:

 

Post

Email

Text message

Telephone

 

Our text and email reminder services is managed by software of Excellence. Software of excellence is a Henry Schein company and is fully compliant with GDPR.

 

Who we share your data with

 

NHS patients

We will be required to share your data when processing your NHS dental claim. Only the relevant information we collect will be shared with the NHS business services Authority, Local Health Boards,  Department for Work & Pensions, HM Revenue & Customs and local authorities. The data that will be shared will be shared will include the following:

 

Name

DOB

Address

Date attended for dental treatment

Type of dental treatment completed

Ethnic group

If you paid you NHS dental treatment and how much.

If you did not pay for your NHS dental treatment, the benefit name that entitled you to receive that free treatment.

 

DPAS plan patients

If you are a member of our practice dental care plan we will be required to share the following information with DPAS, the plan administrator:

Name

DOB

Address

Email

You will also be required to complete a direct debit mandate for your monthly plan premiums to be collected.

DPAS dental plans are part of the WESLEYAN group and are full compliant with GDPR.

 

All Patients

There may be occasions where a referral to a specialists is required. The information that we would share with the specialist hospitals or clinics would include your personal details and contact details, details of any medical conditions and a brief dental history relevant to the referral.

If a referral is required your dentist will discuss the details in full before the referral is sent.

 

We would also share information with our finance partner if you take advantage of any finance schemes. Crown Cottage Dental Care as a broker, consumer credit is provided by.

 

How long do we keep the data we hold about you

We will store patient data for as long as we are providing care, treatment or recalling patients. We will archive data for as long as is required under relevant legal requirements.

 

Our lawful basis for processing data

We hold patients data because it is in our legitimate interest to do so. Without holding the data we cannot work effectively. Also, we must hold data on the NHS care and treatment as it is a public task required by law.

 

Your rights

You have the right to:

  •          Be informed about the personal data we hold and why we hold it
  •          Access a copy of your data, you can do this by contacting us, we will provide
  •          Check your information is correct and to make corrections if not
  •          Have your data erased in certain circumstances
  •          Transfer your data to someone else if you require and is it deemed safe and legal to do so
  •          Tell us not to actively process or update your data in certain circumstances

 

How your data is stored

Your data is securely stored within out servers; our servers are managed and monitored by team metalogic Ltd.

Team metalogic is fully complaint with GDPR

 

If you wish to raise a concern

Please contact our data protection lead Joanna Lewis

 

December 2024