Data Protection and Confidentiality

Slides:



Advertisements
Similar presentations
Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.
Advertisements

Information Governance An Introduction. Information Governance Outline What is Information Governance What initiatives does IG cover.
Principle 1 Principle 1 Processed fairly and lawfully + only with a legitimate basis There should be no surprises, so … inform data subjects why you are.
The Data Protection (Jersey) Law 2005.
Data Protection.
What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.
DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales   
Data Protection Overview
The Data Protection Act
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
Data Protection for Church of Scotland Congregations
CENTRAL SCOTLAND POLICE Data Protection & Information Security Stuart Macfarlane Information Governance Unit Police Service of Scotland.
Practical Information Management
HSC Diploma and Apprenticeships Principles of communication in adult social care settings 301.
Implementation of Security and Confidentiality in GP Practices.
Health & Social Care Apprenticeships & Diploma
Elma Graham. To understand what data protection is To reflect on how data protection affects you To consider how you would safeguard the data of others.
The Data Protection Act 1998 The Eight Principles.
OCR Nationals Level 3 Unit 3.  To understand how the Data Protection Act 1998 relates to the data you will be collecting, storing and processing  To.
Data Protection: An enabler? David Freeland, Senior Policy Officer 23 October 2014.
Investigating Rights and Responsibilities at work
Data Protection STFC Presentation to PPD Senior Staff 26/11/2009 FoI/DP team.
GEOG3025 Confidentiality and social implications.
Data Protection Act & Freedom of Information Simon Mansell Corporate Governance and Information Team.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
What is personal data? Personal data is data about an individual which they consider to be private.
The Data Protection Act What Data is Held on Individuals? By institutions: –Criminal information, –Educational information; –Medical Information;
IT Applications Theory Slideshows By Mark Kelly Vceit.com Privacy Laws.
The Data Protection Act What the Act covers The misuse of personal data by organisations and businesses.
CALDICOTT PRESENTATION. History Caldicott report published in 1997 and implemented in 1999 Inquiry chaired by Dame Fiona Caldicott.
Your health record How the local NHS uses and protects the information held about you Other ways that your records may be used Your local NHS services.
12/12/2015 Data Protection Act /12/2015 The DP Act A law that protects personal privacy and upholds individual’s rights Anyone who handles personal.
Data Protection Act The Data Protection Act (DPA) is a balance between rights of the DATA SUBJECT and obligations of the DATA CONTROLLER DATA CONTROLLER.
INFORMATION GOVERNANCE AND CONFIDENTIALITY Information Governance Facilitator.
DATA PROTECTION ACT (DPA). WHAT IS THE DATA PROTECTION ACT?  The Data Protection Act The Data Protection Act (DPA) gives individuals the right.
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
GCSE ICT Data and you: The Data Protection Act. Loyalty cards Many companies use loyalty cards to encourage consumers to use their shops and services.
Session 11 Data protection. 1 Contents Part 1: Introduction Part 2: Applicability and responsibility Part 3: Our procedures on data protection Part 4:
Business Ethics and Social Responsibility GCSE Business and Communication Systems Business and Communication Systems.
Uses of brain imaging data: privacy and governance implications Dr. Hester Ward Medical Director, Information Services Division, (ISD) Consultant in Public.
Clark Holt Limited (Co. No ), Hardwick House, Prospect Place, Swindon, SN1 3LJ Authorised and regulated by the Solicitors Regulation.
TRANSBORDER DATA FLOWS INA MEIRING. THE PROTECTION OF PERSONAL INFORMATION ACT (“POPI”) > 'personal information' means information relating to an identifiable,
Data protection act. During the second half of the 20th century, businesses, organisations and the government began using computers to store information.
Students’ Unions 2011 Data Protection and Students’ Unions Mairead O’Reilly 19 July 2011.
Information Governance A refresher for all staff who have previously gone through the full course.
The Data Protection Act 1998
The Data Protection Act 1998
Data Protection GCSE ICT Mrs N Steventon-2005.
Mastering Administration
Data Protection Act.
IT Applications Theory Slideshows
Data Protection The Current Regime
Data Protection Act.
The Data Protection Act 1998
Data Protection Legislation
Data Protection & Freedom of Information- An Introduction
GENERAL DATA PROTECTION REGULATION (GDPR)
New Data Protection Legislation
Pam Millington Area 4 co-ordinator
Data Protection principles
Data Protection and You
Unit 1 Effective Communication in Health and Social Care
Identify the laws and guidelines that affect day-to-day use of IT.
Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .
Recording Clinical Data
D3 Confidentiality.
Information management and communication
General Data Protection Regulations 2018
Understanding Data Protection
Dr Elizabeth Lomas The General Data Protection Regulation (GDPR): Changing the data protection landscape Dr Elizabeth Lomas
Presentation transcript:

Data Protection and Confidentiality www.clarimed.co.uk

www.clarimed.co.uk Course objectives Confirm the meaning of data protection and confidentiality State key legislation in relation to data protection and confidentiality Confirm the eight core principles of data protection Consider the implications for both employers and employees and the risks of not adhering to the law State data protection issues relating to marketing, postage, email and social media Know people’s individual rights for accessing their own information Confirm practical methods of ensuring that all staff comply to confidentiality policies

Sensitive information about YOU www.clarimed.co.uk Sensitive information about YOU How sensitive is information about you? What do you wish to remain ‘secret’ about yourself? What personal information about yourself would you tell your employer? What personal information would you tell your doctor? What personal information would you tell a member of your immediate family?

What is Information Governance? www.clarimed.co.uk What is Information Governance? It concerns the safe management of information you look after for your organisation. This includes: Data protection confidentiality and Privacy FOI Act 2001 Records management Information Security

Data Protection, Confidentiality and Privacy www.clarimed.co.uk Data Protection, Confidentiality and Privacy Patient information Health Records Employee information Data protection act Data Protection Influencing thinking on privacy and processing of personal information Maintaining a Statutory Register of personal data users Need-to-know basis

The Eight Principles of Good Practice www.clarimed.co.uk The Eight Principles of Good Practice These say that data must be: 1. fairly and lawfully processed 2. processed for limited purposes 3. adequate, relevant and not excessive 4. accurate and up to date 5. not kept longer than necessary 6. processed in accordance with the individual’s rights 7. secure 8. not transferred to countries outside European Economic area unless country has adequate protection for the individual

Sharing information We can only share information about people if: www.clarimed.co.uk Sharing information We can only share information about people if: we have their consent to do so there is a law that says we have to it is in the public interest, such as to prevent serious harm

The 6 Principles of Confidentiality www.clarimed.co.uk The 6 Principles of Confidentiality Justify the purpose(s) Don’t use patient-identifiable information unless it is absolutely necessary Use the minimum necessary patient-identifiable information Access to patient-identifiable information should be on a strict need-to-know basis Everyone with access to patient identifiable information should be aware of their responsibilities Understand and comply with the law

www.clarimed.co.uk Caldicott Guardians Has key responsibility for staff awareness and training Puts in place systems for access on a need to know basis Is the local champion re: relationship with patients and their information Is a member of the wider information governance team Is responsible for ensuring that systems are in place for safeguarding confidential patient information Advises on confidentiality issues

www.clarimed.co.uk Caldicott Principles 2013 All staff members need to know about the Caldicott Principles and to follow them: Justify the purpose(s) for using patient data Don’t use patient-identifiable data unless absolutely necessary Use the minimum necessary patient-identifiable information Access to patient-identifiable information should be on a strict need to know basis Everyone should be aware of their responsibilities to maintain confidentiality Understand and comply with the law, in particular the Data Protection Act The duty to share information can be as important as the duty to protect patient confidentiality

Sensitive data Racial or ethnic origin Political opinions www.clarimed.co.uk Sensitive data Racial or ethnic origin Political opinions Religious or other beliefs Trade Union membership Physical or mental health condition Sex life Criminal proceedings or convictions

Patient-identifiable information www.clarimed.co.uk Patient-identifiable information A combination of one or more of these can be used to identify a patient: Forename Surname Initials Address Telephone number Date of birth Sex Post code Social security number Ethnic group Occupation

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.