Use this link to enable the ReciteMe accessibility toolkit Enable ReciteMe accessibility tools
Use this link to enable the ReciteMe accessibility toolkit

Accessibility tools

Enable ReciteMe accessibility tools
Home > Help > Privacy

Privacy

Under data protection law we are legally required to explain how we use your personal information

Our privacy and cookie notices explain what we do with your personal information

This notice explains how Newcastle upon Tyne Hospitals NHS Foundation Trust uses information about you when you visit our public website or use any of our secure online forms.

Who we are

Newcastle Hospitals NHS Foundation Trust is a registered Data Controller under UK Data Protection laws.

Our Information Commissioner’s Office (ICO) registration number is Z6173332. You can view our registration by clicking here: Information Commissioner’s website

As a Data Controller, we must make sure that all personal data we hold about you is:

  • used lawfully, fairly and transparently
  • collected for clear, specific and legitimate purposes
  • relevant and limited to what is necessary
  • accurate and kept up to date
  • stored securely and retained only for as long as needed for the stated purposes

We are also responsible for explaining to you how we use your information in a way that is:

  • clear, concise and easy to understand
  • transparent and intelligible
  • accessible, using plain language (especially for children)

Information we collect when you visit our website

We are committed to safeguarding the privacy of our website visitors. Like most websites there are some types of information which will be automatically collected. This includes technical information about your computer, and about your visits to and use of this website, such as:

  • your IP address
  • the website you have come from
  • the type of browser you are using
  • searches you carry out
  • how long you spend on our site
  • the number of pages you viewed

We use this data to understand how people use our website and to help us continually improve it. Information collected when you visit our site does not identify you personally.

How we collect your information

By using Cookies – which are small text files that are stored on your device when the website is loaded on your browser. You can find more details in our Cookie Policy.

Lawful basis for processing personal data

Under UK GDPR, we may rely on two lawful bases:

(a) Consent – we ask for your consent when you submit information to us using one of our secure submission forms.

And/ or

(e) Public Task – we rely on this lawful basis when you visit our website and for the collection of cookie data. This is necessary in order to maintain secure public services and to support our NHS functions.

Secure submission forms

We have some secure forms on our website where we ask for your personal data and other details where appropriate. These forms have been set up to help us respond to the most common requests for information:

Information you provide through these forms is treated in the strictest confidence and goes to a secure NHS mailbox (NHSmail). No information is stored on the website or with any third parties.

How we use wider personal information about you

If you are patient or service user, you can read our full privacy notices here:

Privacy notice for adult patients

Privacy notice for children and young people

If you are a member of staff, please seee

Privacy notice for staff

These notices explain how we use confidential information, why we use it and the choices and rights you have.

Data Protection Officer

Our Data Protection Officer is Julia Scott and is responsible for monitoring our compliance with data protection requirements. You can contact them with queries or concerns relating to the use of your personal data at [email protected]

Following this, if you are still unhappy with how we have used your data, you can then complain to the Information Commissioner’s Office (ICO). The ICO is a national body in the UK that regulates data protection and freedom of information laws.

ICO Address:

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Helpline number: 0303 123 1113ICO website

Definitions

UK GDPR

“UK GDPR” means the UK General Data Protection Regulations.

 DPA18

“DPA18” means the UK Data Protection Act 2018.

Personal data

“Personal data” means information relating to a living person or “data subject”, which can be used to identify the person. Examples include your:

  • Name
  • Identification number
  • Social media posts
  • Location data
  • Online identifier

Special category of personal data

“Special category of personal data” means information which is thought to be “extra sensitive”, such as ethnicity, data concerning health, biometric data, sexual orientation and religious or philosophical belief.

Data controller

“Data controller” means the organisation that determines or decides the purposes, conditions and means of the processing of personal data.

Processing

“Processing” means anything that is done to the personal data we hold e.g. if we use, view, collect, store, share or destroy any personal data.

Changes to this privacy notice

We may update this notice at any time. To maintain transparency, we review it annually or whenever our processing activities change.