We use cookies to make this site work. We'd also like to set optional cookies so we can understand how the site is used and improve it. We will not set optional cookies unless you accept them. You can change your choice at any time from the Cookie settings link in the footer.
Strictly necessary cookies
These cookies are required for the site to work. They store your cookie preferences and keep your session secure. They are exempt from consent under PECR Regulation 6(4) because they are essential to deliver the service you have requested.
Optional cookies
Optional cookies help us understand how the site is used and provide additional features such as analytics, accessibility tools and translation. We will only set them if you accept.
GDPR stands for General Data Protection Regulations and is a new European Directive.
It will not only apply to the UK and EU; it covers anywhere in the world in which data about EU citizens is processed.
The GDPR is similar to the Data Protection Act (DPA) 1998 (which the practice already complies with), but strengthens many of the DPA’s principles.
What does this mean for patients?
The changes in GDPR mean that we must get explicit permission from patients when using their data. This is to protect your right to privacy, and we may ask you to provide consent to do certain things, like contact you or record certain information about you for your clinical records. Individuals also have the right to withdraw their consent at any time.
- Data must be processed lawfully, fairly and transparently
- It must be collected for specific, explicit and legitimate purposes
- It must be limited to what is necessary for the purposes for which it is processed
- Information must be accurate and kept up to date
- Data must be held securely
- It can only be retained for as long as is necessary for the reasons it was collected
There are also stronger rights for patients regarding the information that practices hold about them including:
- Being informed about how data is used
- Patients having access to their own data
- Patients can request to have incorrect information changed
- Patients can restrict how their data is used
- Patients can move their data from one health organisation to another
- The right to object to patient information being processed (in certain circumstances)
Your surgery’s practice manager is the person to contact regarding Data Protection matters, or for more information, ask your reception team for a GDPR leaflet.
Love meLove my mind
A ParkrunPractice
Surrey Coalition ofDisabled People
Armed Forces veteranfriendly accredited
GP practice
The Old Cottage Hospital
Alexandra Road
Epsom
Surrey
KT17 4BL
Telephone: 01372 724434
Car park available
Fitznells Manor Surgery
2 Chessington Road
Ewell
Surrey
KT17 1TF
Telephone: 01372 724434
Car park available
Stoneleigh Medical Centre
24 The Broadway
Stoneleigh
Surrey
KT17 2HU
Telephone: 01372 724434
Free Timed Street Parking Only