To view the Trust’s supplementary privacy notice on Covid19 for patients and service users please click on the link below.
The UK General Data Protection Regulation (GDPR) requires that data controllers provide certain information to people whose information (personal data) they hold and use. A privacy notice is one way of providing this information. This is sometimes referred to as a fair processing notice.
A privacy notice should identify who the data controller is, with contact details for its Data Protection Officer. It should also explain the purposes for which personal data are collected and used, how the data are used and disclosed, how long it is kept and the controller’s legal basis for processing.
To see how Lancashire Teaching Hospitals NHS Foundation Trust store and process data about you, please choose the appropriate privacy notice to view.
Data Protection Impact Assessments (DPIA)
A DPIA is a process designed to help systematically analyse, identify and minimise the data protection risks of a project or plan. It is a key part of our accountability obligations under the UK GDPR, and helps us assess and demonstrate how we comply with all of our data protection obligations.