Data Protection




Our Privacy Notice 

Fir Park Medical Centre is committed to protecting your personal information and being transparent about what we do with it. We are committed to using your personal information in accordance with all applicable laws concerning the protection of personal information and not to do anything with your information you wouldn’t reasonably expect.  We have a legal duty to explain how we use any personal information we collect about you, as a registered patient at the practice

Our Privacy Notice explains what information we collect about you, how we store this information, how long we retain it and with whom and for which legal purpose we may share it.



Data Security 

Our Data Protection & Security Policy describes our approach, methodology and responsibilities for preserving the confidentiality, integrity and availability of Fir Park Medical Centre information. It is the overarching policy for information security and supported by specific technical security, operational security and security management policies. It supports the 7 Caldicott principles and 10 data security standards. To request a copy of our Data Security & Protection policy please contact us via our online form


Subject Access Requests 

Data protection legislation allows you to find out what information is held about you. This is known as “right of subject access”, and applies to your health and social care records.

If you want to see a copy of your health records you should contact a member of staff or complete a Subject Access Request Form.  In order to process any requests we will need to confirm your identity. To request a copy of our Subject Access Request policy or a Subject Access Request Form please contact us via our online form


Data Protection Impact Assessment (DPIA)

The General Data Protection Regulation (GDPR) introduces a new obligation andFir Park Medical Centre is expected to carry out a Data Protection Impact Assessment (DPIA) before implementing new changes or processing that are likely to result in high risk to individuals’ interests. Any completed DPIA's will be listed below.


The National Data Opt-Out – March 2020

The national data opt-out was introduced on 25 March 2018, enabling patients to opt-out from the use of their data for research or planning purposes, in line with the recommendations of the National Data Guardian  in her Review of Data Security, Consent and Opt-Outs.

We are no longer able to record your preference, patients can view or change their national data opt-out choice at any time by using the online service at NHS: Your Data Matters or by calling 0300 3035678

You can also view this on the NHS app