Riverside Surgery complies with the General Data Protection Regulations (GDPR) and Data Protection Act 2018.
Confidentiality is a cornerstone of health care and is central to the work of everyone working in general practice. All information about patients is confidential: from the most sensitive diagnosis, to the fact of having visited the surgery or being registered at the Practice.
The duty of confidentiality owed to a person under 16 is as great as the duty owed to any other person..
All patients can expect that their personal information will not be disclosed without their permission except in the most exceptional of circumstances, when somebody is at grave risk of serious harm.
All health professionals must follow their professional codes of practice and the law. This means that they must make every effort to protect confidentiality. It also means that no identifiable information about a patient is passed to anyone or any agency without the express permission of that patient, except when this is essential for providing care or is necessary to protect somebody's health, safety or well-being.
All health professionals are individually accountable for their own actions. They should also work together as a team to ensure that standards of confidentiality are upheld, and that improper disclosures are avoided.
Standards of confidentiality apply to all health professionals, administrative and ancillary staff - including receptionists, secretaries, practice managers, cleaners and maintenance staff who are bound by contracts of employment to maintain confidentiality - and also to students or others observing practice. They must not reveal, to anybody outside the Practice, personal information they learn in the course of their work, or due to their presence in the surgery, without the patient's consent. Nor will they discuss with colleagues any aspect of a patient's attendance at the surgery in a way that might allow identification of the patient, unless to do so is necessary for that patient's care.