We have detected that you are using Internet Explorer to visit this website. Internet Explorer is now being phased out by Microsoft. As a result, NHS Digital no longer supports any version of Internet Explorer for our web-based products, as it involves considerable extra effort and expense, which cannot be justified from public funds. Some features on this site will not work. You should use a modern browser such as Edge, Chrome, Firefox, or Safari. If you have difficulty installing or accessing a different browser, contact your IT support team.
Community Service Data Set (CSDS): GDPR information
Summary
Why and how we process your data in the Community Services Data Set (CSDS) and your rights.
Controller | NHS Digital (in relation to processing the personal data) and the Department of Health and Social Care (in relation to determining the purpose for processing the data through the issuing of a direction to NHS Digital). |
How we use the information (processing activities) | The Community Services Data Set (CSDS) collects information about children, young people and adults who are in contact with providers of NHS funded community services in England. This information is to help improve care by commissioning services in a way that improves health, reduces inequalities, and supports service improvement and the quality of the care provided. The data collected in CSDS includes personal and demographic information, diagnoses including long term conditions and disabilities and care events plus screening activities. Data may also be submitted by providers to Arden and Gem DSCRO, to pilot new methods of collecting data, this is limited to providers who have agreed to take part in a community services data set pilot. |
Does this contain sensitive (special category) data such as health information? | Yes |
Who are recipients of this data? |
Available via the Data Access Request Service (DARS). Recipients are recorded in the Data Uses Register for these disseminations. |
Is data transferred outside the UK? | Not for the purposes of processing it by NHS Digital. It may be transferred outside of the UK if this is approved by NHS Digital through the DARS process for any particular dissemination. |
How long the data is kept | 20 years minimum from the date the data is received. |
Our lawful basis for holding this data | Legal obligation |
Your rights |
|
How can you withdraw your consent? |
Consent is not the basis for processing. Option available via National Data Opt out to stop your confidential patient information being used for research and planning. |
Is the data subject to decisions made solely by computers? (automated decision making) | No |
Where does this data come from? | Providers of NHS funded community services in England. |
The legal basis for collecting this data | GDPR: |