Data Protection Act, 1998
NHS Greater Glasgow and Clyde (NHSGGC) is the data controller of the personal data it processes for the purpose of the Data Protection Act 1998 and is registered as a data controller with the Information Commissioner under Notification No. Z8522787.
This privacy notice tells you what to expect when NHS Greater Glasgow and Clyde (NHSGGC) collect personal information. It applies to information we hold, both electronically and in paper format, to enable the following functions to be carried out:
How we use your information
The Board has a statutory responsibility to provide or arrange for the provision of a comprehensive range of healthcare, health improvement and health protection services.
Information we hold may be used to:
Consent and sharing data
For most purposes, we will only process your information with your consent.
There will be occasions when information will be shared without consent, particularly to protect vulnerable adults and children.
There are circumstances where we are required by law to share information which can identify you.
NHSGGC has an obligation to assist in the prevention of crime and we may supply information to the police, provided we are satisfied that the request is connected to an investigation and that disclosure would be lawful and proportionate.
NHSGGC has a legal obligation to safeguard public funds and we reserve the right to check information you have provided for accuracy, in order to detect fraud. We participate in anti-fraud data matching exercises carried out by other agencies such as the National Fraud Initiative (operated on behalf of Audit Scotland).
NHSGGC works closely with other public bodies, such as Glasgow City Council and generally we will only share information with these partner bodies with your consent.
Where we use external contractors to process information on our behalf, they will do so under written contracts which require them to keep personal information safe and secure.
NHSGGC do not sell personal details to any external organisation.
Research, Audits and Service Evaluations
Wherever possible we will only use anonymised or pseudo-anonymised data for research, audit and planning purposes.
A number of statistical analyses exercises may be carried out on the information we hold in order to monitor our performance and to improve our service. These statistics may be published or shared with other organisations, but no individual will be able to be identified from this data.
We have close links with Glasgow’s three universities and make a significant contribution to teaching at both undergraduate and postgraduate level. Research has a high profile within the organisation using information we hold. We may also share your information with other public bodies as part of a project to produce better population estimates for the City.
Access to your information
You have the right to request a copy of information that we hold about you. If you would like a copy of some or all of your personal information, please:
Email: [email protected]
or write to:
Information Governance Department
NHS Greater Glasgow and Clyde
JB Russell House (Board HQ),
Gartnavel Royal Campus,
1055 Great Western Road,
Glasgow G12 0XH
For further information on how to access you health records please go to our 'Access to Records / Seeing your notes' page.
For further information on how your information is used, how we maintain the security of your information and your rights to access information we hold on you, please contact the Information Governance Department (contact details provided above).