When you use our services, we keep information about you and the care you receive, in a health and care record.

We do this so the people looking after you can make the best decisions about your care. You can request access your health records at any time. You can find out how to access your health records here.

We are bound by a legal duty of confidence to protect your personal data and make sure it’s handled securely. Only people involved in your care can access your records.
 

The information in your records can include things like:
  • name, age and address
  • health conditions
  • treatments and medicines
  • allergies and past reactions to medications
  • tests, scans and x-ray results
  • hospital admission and discharge information
  • contacts we’ve had with you e.g. clinic visits or therapy appointments
  • notes and reports about treatment or care we’ve provided
     
Your information might also be used to help us:
  • improve the quality and standards of the care we provide
  • research the development of new treatments
  • prevent illness and diseases
  • monitor safety
  • plan services

Confidential patient information about your health and care is only used like this where allowed by law.

Most of the time, anonymised data is used for research and planning so you cannot be identified.
 

Make your choice

You have a choice about whether you want your confidential patient information to be used in this way.

If you’re happy with this use of information you do not need to do anything. If you choose to opt out, your confidential patient information will still be used to support your individual care. 

To find out more or to register your choice to opt out, visit nhs.uk/your-nhs-data-matters

You can find out more about how patient information is used at:

hra.nhs.uk/information-about-patients

understandingpatientdata.org.uk/what-you-need-know 

Data being used or shared for purposes beyond individual care does not include your data being shared with insurance companies, or used for marketing purposes. Data would only be used in this way with your specific agreement.      

Health and care organisations have until 2020 to put systems and processes in place so they can be compliant with the national data opt-out, and apply your choice to any confidential patient information they use or share, for purposes beyond your individual care. Our Trust is currently compliant with the national data opt-out policy.
 

Sharing your information

If you’re receiving care from other organisations like social services, we may need to share information about you so we can all work together for your benefit. We only ever use or pass on information about you if there’s a genuine need for it. When we pass on any information we make sure it’s kept confidential and secure.

We will not disclose your information to 3rd parties without your permission unless there are exceptional circumstances, e.g. when the health or safety of others is at risk, or where the law requires information to be passed on.
 

Who to contact

If you have any questions about your information or how it is used, please contact our Data Protection Officer.

Head of Information Governance / Data Protection Officer
Maglona House
Unit 68 Kingstown Broadway
Carlisle
CA3 0HA
01228 603961 
information.governance@ncic.nhs.uk

DPIAs (also known as Privacy Impact Assessments or PIAs) are a tool that help organisations comply with data protection laws. DPIAs allow organisations to identify and fix problems at an early stage, reducing the associated costs and damage to reputation, which can sometimes occur.

View our DPIA summaries