We have detected that you are using Internet Explorer to visit this website. Internet Explorer is now being phased out by Microsoft. As a result, NHS Digital no longer supports any version of Internet Explorer for our web-based products, as it involves considerable extra effort and expense, which cannot be justified from public funds. Some features on this site will not work. You should use a modern browser such as Edge, Chrome, Firefox, or Safari. If you have difficulty installing or accessing a different browser, contact your IT support team.
Individual General Practice (GP) level data: GDPR information
Why and how we process your data within Individual General Practice (GP) level data, and your rights.
|How we use the information (processing activities)||Creation of General Practice reports containing quality of care and outcome data for their patients.|
|Does this contain sensitive (special category) data such as health information?||No|
|Who are recipients of this data?||
Aggregated data shared with appropriate General Practice and General Practitioners
|Is data transferred outside the UK?||No|
|How long the data is kept||1 year minimum after no longer required|
|Our lawful basis for holding this data||Legal obligation|
|How can you withdraw your consent?||
Consent not the basis for processing - Type 1 objections applied
|Is the data subject to decisions made solely by computers? (automated decision making)||No|
|Where does this data come from?||General Practice (GP) medical records|
|The legal basis for collecting this data||
Legal obligation (Direction)
Where NHS Digital uses this data
The Government's mandate to NHS England includes a task of working with NHS Digital and The Department of Health (DH) to provide General Practitioners (GPs) and general practices with information on the care provision for their patients.