Privacy policy
As data controllers, GPs have fair processing responsibilities under the Data Protection Act and GDPR law 2018. This means ensuring that your personal confidential data (PCD) is handled in ways that are safe, transparent and what you would reasonably expect. .
How We Use Your Personal Information
Mendip Vale Medical Group is committed to protecting your personal information and ensuring it is used safely, securely, and appropriately.
This Privacy Policy explains how we collect, use, and share your information when you receive care from us and when you use our website.
What Information We Collect
We may collect and hold personal information including:
- Your name, address, date of birth, and contact details
- Your NHS number
- Information about your health, medical conditions, and treatment
- Records of your interactions with the practice (such as appointments and calls)
Why We Use Your Information
We use your information to:
- Provide safe and effective healthcare
- Manage appointments and services
- Communicate with you about your care
- Improve our services and ensure quality standards
Our Legal Basis
We process your information as part of providing healthcare under UK data protection law, including the UK General Data Protection Regulation (UK GDPR).
Sharing Your Information
We may share your information with organisations involved in your care, including:
- Local hospitals such as University Hospitals Bristol and Weston, North Bristol NHS Trust, and Royal United Hospitals Bath
- Community healthcare teams and pharmacies
- NHS services such as NHS 111 and out-of-hours providers
We may also share data where required with NHS England, NHS Digital, public health organisations, and regulators such as the Care Quality Commission (CQC).
Digital Services
We use secure NHS-approved systems to support your care, including:
- Electronic patient record systems (EMIS and SystmOne)
- Online consultation tools (eConsult and SystmConnect)
- Communication tools (Accurx)
- Administrative and clinical support systems (Healthtech‑1, Lexacom, InstaR)
These systems are designed to improve access to care and ensure accurate clinical records.
Cookies and Website Usage
Our website uses cookies and similar technologies to improve your experience and help us understand how the website is used.
Cookies are small text files placed on your device when you visit a website. They help us to:
- Ensure the website functions correctly
- Recognise returning users
- Analyse website traffic and usage
- Improve the performance and content of the website
We do not use cookies to collect personal or sensitive health information directly. Any data collected through cookies is typically anonymised or aggregated.
You can control or disable cookies through your browser settings. However, please be aware that some parts of the website may not function properly if cookies are disabled.
When using our website, you should avoid entering personal or sensitive health information into general search fields or non-secure forms.
Communication and Call Recording
We may contact you by phone, text message (SMS), or email about your care.
Telephone calls to and from the practice may be recorded for training, quality assurance, and safety purposes.
Call recordings are kept securely and retained for up to 6 months before being deleted.
CCTV and Recording
CCTV is used in public areas of the practice to maintain safety and security.
Personal recording devices are not permitted in public areas. If you wish to record a consultation, you must agree this with the clinician in advance.
Your Rights
You have the right to:
- Access your personal information
- Request correction of inaccurate information
- Object to how your data is used in certain circumstances
You can also access parts of your medical record via the NHS App.
Complaints
If you have concerns about how your personal data is used, you can contact the practice directly.
We will:
- Acknowledge your concern within 30 days
- Investigate appropriately
- Provide a clear response
You also have the right to complain to the Information Commissioner’s Office (ICO):
👉 https://ico.org.uk/concerns
📞 0303 123 1113
Contact Us
If you have any questions about this Privacy Policy or your data, please contact:
📧 bnssg.mendipvale.scanners@nhs.net
📞 01934 839820