The Gallery Dental Centre Of Excellence aims to comply with the Data Protection Act 2018 and the General Data Protection Regulation (GDPR). This policy and the related procedures lay out how The Gallery Dental Centre Of Excellence complies with the Data Protection Act 2018 and the GDPR. All team members must ensure they read, understand and comply with our policy and procedures in relation to the Data Protection Act 2018 and the GDPR.
Ensuring that individuals’ personal information is processed in line with the requirements of the GDPR and that individuals’ privacy is respected is imperative and all team members must give this a very high priority.
To comply with the Data Protection Act 2018, our practice has notified the Information Commissioner that personal information relating to patients and team members is processed and stored within our practice.
Under GDPR, all individuals who have personal data held about them have the following personal privacy rights:
This includes all decisions made without human intervention e.g. email reminders to book an appointment or text or email reminders of appointments, direct marketing i.e. all decisions that are taken automatically.
The ability to take personal data elsewhere e.g. to another dental practice or employer.
Data Protection Officer (DPO) and Data Protection Lead
A DPO is a person designated or appointed to ensure the organisation or business complies with GDPR.
In our practice the DPO is Caroline Driver.
The Gallery Dental Centre Of Excellence aims to comply with GDPR requirements that state that personal data must be:
Personal data inventories (patients and team members)
Our personal data inventories list all the personal data we process for patients and team members together with the risks attached to each type of data.
As required by GDPR, the data inventories also list:
Access to records
All data subjects have the right of access to and copies of their personal data whether they are held on paper or on computer.
Patient records
A request from a patient to see records or for a copy must be referred to the patient’s dentist.
Care should be taken to ensure that the individual seeking access is the patient in question and where necessary the practice will seek information from the patient to confirm identity. A copy of the record must be supplied within one month at the very latest from the request being made. Every effort should be made to supply the information requested without delay and as soon as possible following receipt of the request.
The fact that patients have the right of access to their records makes it essential that information is properly recorded.
Records must be:
We have processes in place to ensure that we can respond to a data subject’s request for access to or copies of their records within one month (four weeks). We do not charge a fee for access to or copies of records.
In some situations, we may refuse an access request if we think it is unfounded or excessive. In those situations, we have clear refusal policies and procedures in place and will always ensure we can demonstrate why the request meets these criteria.
We provide additional information to people making requests, including our data retention periods and the right to have inaccurate data corrected.
Access refusal policy
Under certain, very limited circumstances we may refuse access to or copies of personal records. These could include:
In these circumstances we will demonstrate how the request fits these criteria in accordance with GDPR and we will provide the individual with an explanation for the refusal unless this could put them at risk.
Consent is one of the legal bases for processing personal data. Consent is not appropriate as a legal basis for processing personal data in relation to patient care or to administer an employment contract or a self-employed associate agreement.
Consent must always be obtained for direct marketing.
We also obtain consent for the following:
We understand that gaining consent is a complex process and we ensure that all the conditions described below are satisfied.
When using consent to process data for the purposes listed above, we ensure that:
Data Protection Officer (DPO)
Our DPO is Caroline Driver.
Our DPO’s duties are:
Personal information about our patients includes:
The Gallery Dental Centre Of Excellence retains records of personal data only for as long as is required for the purposes for which it was collected or as required by law or to comply with statutory requirements.
Retention periods for individual items of data are documented in our Data Inventory records, in our Privacy Policy and in our Privacy Notices as required by the GDPR.
This practice retains dental records and orthodontic study models while the patient is a patient of the practice and after they cease to be a patient, for at least eleven years, or for children until age 25, whichever is the longer.
To comply with GDC Standards and GDPR, we ensure that if we are sending confidential information, we use a secure method. If we are sending or storing confidential information electronically, we will ensure that it is encrypted.
We are aware that the incorrect use of ‘BCC’ & ‘CC’ via an email is one of the top data breaches reported to the ICO. Great care must be taken when using these options, if personal information is likely to be shared, a more secure option must be used.
Our email system can be configurated to:
Disclosure of Information to Third Parties
The information we collect, and store will not be disclosed to anyone who does not need to see it.
Disclosure of Information – patients
The information we collect, and store will not be disclosed to anyone who does not need to see it.
We will share our patients’ personal information with third parties when required by law or to enable us to deliver a service to them or where we have another legitimate reason for doing so. Third parties we may share patients’ personal information with may include:
We may also share personal information where we consider it to be in a patient’s best interest or if we have reason to believe an individual may be at risk of harm or abuse.
Data subjects have the right to object to their personal data being processed or disclosed. Patients and team members who wish to object should discuss the matter with practice manager Joanna Gozdowska or DPO Caroline Driver. This may affect our ability to provide patients with dental care or it may affect our ability to fulfil the contract or agreement we hold with a team member.
This Policy, Code of Practice and the related practice procedures was implemented on 02/01/2024.
This payment plan provides for your routine preventive dental care and you pay for restorative treatment as you need it. It is easy to set up and no pre-assessment is necessary.
It includes:
Fees from £17.45
This provides cover towards dental implant treatment costs required as a result of dental injury where a tooth is damaged beyond repair. Implant cover can be added as an option to any of the above plans. Your dentist can discuss with you the best plan to suit your needs, and the monthly subscription cost.
Fees from £2.25 extra per month
Disclaimer:
All fees listed above include the cost of optional Denplan Supplementary Insurance, provided by Simplyhealth Access. During your application you will choose whether to add this optional cover to your plan or not. You will be given full details of the insurance’s benefits and information to help you decide if it is right for you. If you choose not to take out this optional insurance the plan’s monthly fee will reduce by 60p (the monthly cost of the insurance).
This is a monthly payment plan which helps you pay for your routine and restorative dental treatment. Your dentists will conduct a dental assessment and what you pay per month depends on your oral health, making sure you only pay for what you need.
It includes:
Fees from £18.95 – £42.95
This provides cover towards dental implant treatment costs required as a result of dental injury where a tooth is damaged beyond repair. Implant cover can be added as an option to any of the above plans. Your dentist can discuss with you the best plan to suit your needs, and the monthly subscription cost.
Fees from £2.25 extra per month
Disclaimer:
All fees listed above include the cost of optional Denplan Supplementary Insurance, provided by Simplyhealth Access. During your application you will choose whether to add this optional cover to your plan or not. You will be given full details of the insurance’s benefits and information to help you decide if it is right for you. If you choose not to take out this optional insurance the plan’s monthly fee will reduce by 60p (the monthly cost of the insurance).
To apply for finance, you will need to complete a simple, online credit application, which one of our staff can help you with. You can do this either in clinic or have it emailed for you to complete at home. You can borrow between £500 and £25,000, subject to status. You must be over 21 to apply, and you must have lived in the UK for at least 3 years. Repayments are made by easy monthly direct debit, starting one month after you sign the credit agreement, and are subject the usual guarantee from your bank. There is a statutory ‘cooling off’ period of 14 days after signature during which you can cancel the credit agreement with no cost to you. However, if you have started any treatment which would have been financed, you will have to make other arrangements to pay for it.
Credit is subject to status, affordability and applicable terms and conditions.
Disclaimer:
The finance is arranged through Chrysalis Finance Ltd., a company authorised and regulated by the Financial Conduct Authority to carry out the regulated activity of credit broking under Firm Reference Number 631193.
*Amount of Credit £1,500.00. Total Amount Repayable £1,500.00. Repayable by 6 monthly payments of £250.00. Representative 0.0% APR variable. Finance is Subject to status and full terms and conditions apply.
York House Centre Limited trading as The Gallery Dental Centre of Excellence is an Appointed Representative of Chrysalis Finance Limited, which is authorised and regulated by the Financial Conduct Authority to carry out the regulated activity of credit broking www.chrysalisfinance.com.
Cookie | Duration | Description |
---|---|---|
cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |