This website uses cookies to function correctly.
You may delete cookies at any time but doing so may result in some parts of the site not working correctly.


General Data Protection Regulations (GDPR)

What is GDPR?

The EU General Data Protection Regulation (GDPR) applies to all EU member states and will come into force on 25th May 2018. The GDPR is to be read in conjunction with the Data Protection Bill published in September 2017. The overall aim of the GDPR is to protect individuals from data and privacy breaches in an environment that is driven by technological advances.

The GDPR is based on the 1980 ‘Protection of Privacy and Transborder Flows or Personal Data Guidelines’ which outlined the following eight principles:

Collection limitation
Security safeguards
Data quality
Purpose specification
Individual Participation
Use limitation

The GDPR requires practices to process data ‘fairly’ and in a ‘transparent manner’ which is ‘easily accessible and easy to understand’. This means that practices must provide information to patients about how the practice processes patient data in the form of ‘Practice Privacy Notices PPN)’.

Practice Privacy Notice

Privacy Information Leaflet adults

Privacy Information Leaflet for Children

GDPR Information

GDPR Childrens Poster

Call 111 when you need medical help fast but it’s not a 999 emergencyNHS ChoicesThis site is brought to you by My Surgery Website