Data Protection Privacy Statement Code of Practice

Our data protection code of practice lays out our procedures that ensure North St
Dental Practice and our employees comply with The General Protection Regulation
(GDPR) (Regulation (EU) 2016/679)
What personal data do we hold?
To provide patients with a high standard of dental care and attention, we need to
hold their personal information. This personal data can include:

•  Past and current medical and dental condition; personal details such as age, address, telephone number and general medical practitioner
• Radiographs, clinical photographs and study models
• Information about their treatment that we have provided or propose and its cost
• Notes of conversations or incidents that might occur for which a record needs to be
  kept
• Records of consent to treatment
• Any correspondence relating to them and other health care professionals, for
  example in the hospital or Medical Specialist Group

Retaining information
We will retain your dental records while you are a patient and after you cease to be
a patient, for at least eleven years, or for children until age 25, whichever is the
longer.
Security of information
Personal data about you is held in the practice’s computer system and/or in a
locked manual filing system. The information is only accessible to authorized team
members. Our computer system has secure audit trails and we back up
information routinely.
Patients have the right to access the data we hold all requests must be made in
writing to Dr L T Fitzpatrick.