Data Extraction & Research
21st July 2021
There as been much in the news recently about how your GP data is extracted and used and we would like to give you an up to date summary.
The current NHS Digital (NHSD) extract of GP data for Research purposes (known as the GPDPR) has been delayed due to NHSD wishing to review the way in which this data will be collected, to conduct more public involvement and information about the plans and change the way in which patients can opt out of the extract of their GP data.
Currently the only way to opt out is to complete a Type 1 opt out form and return this to the practice by the 1st September. However, this extract will not be taken until the NHSD have changed the way it will take the data and respect the patient’s choice for using their data. NHSD are introducing the following changes to the opt out process which will mean that patients will be able to change their opt-out status at any time::-
- Patients do not need to register a Type 1 opt-out by 1st September to ensure their GP data will not be uploaded.
- NHS Digital will create the technical means to allow GP data that has previously been uploaded to the system via the GPDPR collection to be deleted when someone registers a Type 1 opt-out.
- The plan to retire Type 1 opt-outs will be deferred for at least 12 months while we get the new arrangements up and running and will not be implemented without consultation with the RCGP, the BMA and the National Data Guardian.
This means that you can opt out at any time in the future and NHSD will delete data that they already have taken for research purposes, the deadline of the 01/09/2020 has been delayed until a new system of opt out is developed. Hopefully, this will be a simple centralised approach via the NHS app or NHS website to avoid paper form and administration work for your GP.
We will update you when we know more about the NHSD plans to change how you can control who has access to your data.
General Data Protection Regulation
The practice processes medical records and shares them with appropriate staff who are involved in providing direct care for individual patients. For more information what data we process and on how we comply with with GDPR please see our privacy notice below:
GFMC Privacy Notice
Confidentiality & Medical Records
The practice complies with GDPR and is also bound by the Common Law Duty of confidentiality. Identifiable information about you will be shared with others in the following circumstances:
- To provide further medical treatment for you e.g. from district nurses and hospital services.
- To help you get other services e.g. from the social work department. This requires your consent.
- When we have a duty to others e.g. in child protection cases.
- Anonymous patient information will also be used at local and national level to help the Health Board and Government plan services e.g. for diabetic care.
If you do not wish anonymous information about you to be used in such a way, please let us know.
Reception and administration staff require access to your medical records in order to do their jobs. These members of staff are bound by the same rules of confidentiality as the medical staff.
Summary Care Record and Electronic Data Sharing Model (eDSM)
These are two of the methods in which your medical record may be shared with other organisations - please see the leaflet below for more information.
Medical Records and Information Sharing
Access to Records
In accordance with the GDPR patients may request to see or obtain copies of their medical records. Such requests should be made through the practice manager and will normally be free of charge.
No information will be released without the patient consent unless we are legally obliged to do so.
Freedom of Information
Information about the General Practitioners and the practice required for disclosure under this act can be made available to the public. All requests for such information should be made to the practice manager.
INDEPENDENT INFORMATION AND ADVICE
Find out more information about data sharing from the Information Commissioners Office. The ICO is the UK's independent body set up to uphold information rights. Click HERE to go to their website.