National Diabetes Audit (NDA) Core: GDPR information
Why and how we process your data in the National Diabetes Audit (NDA) Core system, and your rights.
|How we use the information (processing activities)||Provision of the National Diabetes Audit to check individuals with diabetes are receiving annual care checks, their treatment targets and potentially identify those at high risk of developing diabetes.|
|Does this contain sensitive (special category) data such as health information?||Yes|
|Who are recipients of this data?||
|Is data transferred outside the UK?||No|
|How long the data is kept||8 years minimum after no longer required|
|Our lawful basis for holding this data||Legal obligation|
|How can you withdraw your consent?||
Consent not the basis for processing
|Is the data subject to decisions made solely by computers? (automated decision making)||No|
|Where does this data come from?||General Practice (GP) medical records|
|The legal basis for collecting this data||
Legal obligation (Direction) and management of health and social care systems
Where NHS Digital uses this data
The Core National Diabetes Audit (NDA) is one of the largest annual clinical audits in the world, integrating data from both primary and secondary care sources, making it the most comprehensive audit of its kind.