Find out more about how we use information about you and others.
Everyone working for the NHS must keep information about you confidential.
All NHS organisations follow the principles and values set out in the NHS Constitution when using and sharing personal information.
How the CCG uses your information
Information about your health and care is confidential and not routinely shared with the CCG. However, we may on occasion need to access and use certain personal information with your consent if, for example, we are involved in helping you resolve a complaint or if we fund specialised treatment for you.
We will only use information about you in accordance with the Data Protection Act 2018, the Human Rights Act 1998 and the common law duty of confidentiality.
In order to effectively commission health services for mid Essex we need to use anonymised data about the local population. Accurate and relevant information is essential when planning your health services and conducting research.
We do not share personal information about you with other organisations without your permission. However, there may be circumstances where we are required by law to report certain information to the appropriate authorities, for example, to protect vulnerable children and adults from harm or to prevent fraud.
In such cases, permission to share must be sought from our Caldicott Guardian, who is responsible for ensuring confidential patient information is protected. We are obliged to tell you when we share your information unless doing so puts you or others at risk of harm.
Read our document Fair Processing Notice (183 KB) to find out exactly how we use your information and date and to find out how to access your health record.
For details on how staff information is used and shared, please access our Staff Fair Processing Notice
For advice on how to make a Freedom of Information (FOI) request, click here.
General Data Protection Regulation (GDPR)
The General Data Protection Regulation (GDPR) is an EU Regulation, developed to update data protection law and to unify all EU Member States (Countries) approach to data protection and ensure the law is applied identically in every EU Country.
Read more about GDPR and what this means here.