Patient Privacy Notice
The practice aims to meet the requirements of the Data Protection Act 2018, the General Data Protection Regulation (GDPR], the guidelines on the Information Commissioner’s website as well as our professional guidelines and requirements. The GDPR states that you must be given prior notice regarding data we collect, process, store and amend or delete:-
The types of data we collect: – You will be asked to provide personal information.
Personal data – this is the information you give us when you join the practice as a patient or send us an enquiry form via our website
Special category data – At our dental practice it would be your health records in relation to the dental treatment you would receive, this includes your medical history taken at your first appointment and updated at every appointment thereafter.
The reasons we request your data:
Personal data – This information is used to identify who you are e.g your name, address, telephone number, email address, NHS number, x-rays, clinical photos, models, scans, etc.
Special category data – . This is for the purposes of the delivery of health care
Why we process your data:
Personal data – we use this information to be able to contact you regarding appointments, updates to you treatments and for marketing purposes.
Special category data – we use your health records to be able to correctly diagnose, form a treatment plan and to provide optimum health care to you.
Why we keep your records and for how long:
We keep your records to meet the contractual requirements we have with the NHS. The retention period for special data in patient records is a minimum of 10 years and may be longer for complex records in order to meet our legal requirements. We follow the NHS guidelines on record retention.
Who we share your information with:
We never pass your personal details to a third party unless we have a contract for them to process data on our behalf and will otherwise keep it confidential. If we intend to refer a patient to another practitioner or to secondary care such as a hospital we will gain the individual’s permission before the referral is made and the personal data is shared.
There are circumstances in which we are legally obligated to share your data without your consent. Some examples are:
situations where there is a serious public health risk or risk of harm to other individuals, when information is required by the police to prevent or detect crime or to apprehend or prosecute offenders (if not providing the information would prejudice these purposes), HMRC, to enable a dentist to pursue a legal claim against a patient
Your personal data rights:
The right to be informed – privacy notice
The right of access – you can request to see or have a copy of your records
The right to rectification – you can amend or rectify your records
The right to erasure – (please be aware that you cannot ask us to delete your clinical records)
The right to restrict processing – you can request that certain data not be processed.
The right to data portability – you can request your data to be copied and transferred
The right to object – you can object to personal data to be used for marketing
Further details of these rights can be seen in our Information Governance Procedures or at the Information Commissioner’s website.
Here are some practical examples of your rights:
If you are a patient of the practice you have the right to withdraw consent for important notifications, newsletters, surveys or marketing. You can inform us to correct errors in your personal details or withdraw consent from communication methods such as telephone, email or text. You have the right to obtain a free copy of your patient records within one month.
If you are not a patient of the practice you have the right to withdraw consent for processing personal data, to have a free copy of it within one month, to correct errors in it or to ask us to delete it. You can also withdraw consent from communication methods such as telephone, email or text.
Comments or suggestions about your data processing
Please contact: Mr. Andrew Cross (Information Governance Lead & Data Protection Officer)
E: email@example.com T: 01493 720653
Complaints about your data processing
Please contact: Mrs. Carole Plummer
E: firstname.lastname@example.org T:01493 720653
or by writing to:
66 Tan Lane, Caister-on-Sea, Great Yarmouth, NR30 5DT.
We take complaints very seriously.
The full Privacy Notice is available on the practice
1. websites www.plummers.co.uk www.facesandsmilesdental.co.uk
2. Reception desk at our practices
3. Email if you contact email@example.com
4. By calling our Head office on T: 01493 720653.
Website Privacy and Cookies
What information do we collect?
We may collect, store and use the following kinds of personal information:
(a) information about your computer and about your visits to and use of this website (including your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views, website navigation and time spent on the site;
(b) information relating to any transactions carried out between you and us on or in relation to this website, including information relating to any purchases of our courses or training;
(c) information that you provide to us for the purpose of sending us an enquiry form;
(d) information that you provide to us for the purpose of subscribing to our website services, email notifications and/or newsletters;
(e) any other information that you choose to send to us.
A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser, and stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server. This enables the web server to identify and track the web browser.
For more information about cookies see below.
Using your personal information
We may use your personal information to:
(a) administer the website;
(b) improve your browsing experience by personalising the website;
(c) enable your use of the services available on the website;
(d) supply to you services purchased via the website, e.g training;
(e) send statements and invoices to you, and collect payments from you;
(f) send you general (non-marketing) commercial communications;
(g) send you email notifications which you have specifically requested;
(h) send to you our newsletter and other marketing communications relating to our business or the businesses of carefully-selected third parties, which we think may be of interest to you by post or, where you have specifically agreed to this, by email or similar technology (you can inform us at any time if you no longer require marketing communications);
(i) provide third parties with statistical information about our users – but this information will not be used to identify any individual user;
(j) deal with enquiries and complaints made by or about you relating to the website;
(k) keep the website secure and prevent fraud;
Where you submit personal information for publication on our website, we will publish and otherwise use that information in accordance with the licence you grant to us.
We will not without your express consent provide your personal information to any third parties for the purpose of direct marketing.
We may disclose your personal information:
(a) to the extent that we are required to do so by law;
(b) in connection with any legal proceedings or prospective legal proceedings;
(c) in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk);
(e) to any person who we reasonably believe may apply to a court or other competent authority for disclosure of that personal information where, in our reasonable opinion, such court or authority would be reasonably likely to order disclosure of that personal information.
Information which you provide may be transferred to countries (including the United States and India which do not have data protection laws equivalent to those in force in the European Economic Area).
We cannot prevent the use or misuse of such information by others.
You expressly agree to such transfers of personal information.
Security of your personal information
We will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal information.
We will store all the personal information you provide on our secure (password- and firewall- protected) servers. All electronic transactions you make to or receive from us will be encrypted using SSL technology.
Of course, data transmission over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.
You are responsible for keeping your password and user details confidential. We will not ask you for your password (except when you log in to the website).
You may instruct us to provide you with any personal information we hold about you. Provision of such information will be subject to:
The supply of appropriate evidence of your identity (for this purpose, we will usually accept a photocopy of your passport certified by a solicitor or bank plus an original copy of a utility bill showing your current address).
We may withhold such personal information to the extent permitted by law.
You may instruct us not to process your personal information for marketing purposes, by sending an email to us. In practice, you will usually either expressly agree in advance to our use of your personal information for marketing purposes, or we will provide you with an opportunity to opt-out of the use of your personal information for marketing purposes.
Third party websites
Our practice websites contain links to other websites. We are not responsible for the privacy policies or practices of third party websites.
Please let us know if the personal information which we hold about you needs to be corrected or updated.
The data controller responsible in respect of the information collected on these websites is John G Plummer & Associates Dental Surgeons
What are cookies?
For more general information on cookies see the Wikipedia article on HTTP Cookies
You can prevent the setting of cookies by adjusting the settings on your browser (see your browser Help for how to do this). Be aware that disabling cookies will affect the functionality of this and many other websites that you visit. Disabling cookies will usually result in also disabling certain functionality and features of this site. Therefore, it is recommended that you do not disable cookies.
The cookies we set
When you submit data to through a form such as those found on contact pages or comment forms cookies may be set to remember your user details for future correspondence.
Third party cookies
This site uses Google Analytics which is one of the most widespread and trusted analytics solution on the web for helping us to understand how you use the site and ways that we can improve your experience. These cookies may track things such as how long you spend on the site and the pages that you visit so we can continue to produce engaging content. These cookies do not collect or store any personal information about you. Analytics data cannot be used to identify you, or to tell us what you did on our website. It is anonymous. You can read more about Google Analytics cookies here.
Other third-party cookies are set by web sites other than our website when you carry out certain activities such as view a YouTube video, click a social media link such as Facebook, Twitter and LinkdIn or follow a link on this site outside of this one.
As third-party cookies are not controlled by us we only link to sites that we consider to be safe but it is up to the user to verify that they are happy to visit other sites or use other web services as we cannot control them.
From time to time we test new features and make subtle changes to the way that the site is delivered. When we are still testing new features, these cookies may be used to ensure that you receive a consistent experience whilst on the site whilst ensuring we understand which optimisations our users appreciate the most.
There are instructions on how to delete cookies and how to control cookies on the About Cookies website. This website is owned by John G Plummer & Associates Dental Surgeons.
Hopefully that has clarified things for you and as was previously mentioned if there is something that you aren’t sure whether you need or not it’s usually safer to leave cookies enabled in case it does interact with one of the features you use on our site. However, if you are still looking for more information you can contact us using the contact form.