We have detected that you are using Internet Explorer to visit this website. Internet Explorer is now being phased out by Microsoft. As a result, NHS Digital no longer supports any version of Internet Explorer for our web-based products, as it involves considerable extra effort and expense, which cannot be justified from public funds. Some features on this site will not work. You should use a modern browser such as Edge, Chrome, Firefox, or Safari. If you have difficulty installing or accessing a different browser, contact your IT support team.
Enterprise Service management platform: GDPR information
Summary
Why and how we process your data in the NHS Digital Enterprise Service management platform, and your rights.
| Controller | NHS Digital |
| How we use the information (processing activities) | Details are held to ensure users can log incidents and service requests into the NHS Digital Enterprise Service management platform efficiently, and to ensure they can be contacted about updates. The information also ensures they can only see the calls that are relevant to them and their role. Internal users have details in the system to allow issues to be progressed through to their resolution. NHS Digital has a contract with ServiceNow, who are our processor. |
| Does this contain sensitive (special category) data such as health information? | No |
| Who are recipients of this data? |
None |
| Is data transferred outside the UK? | No |
| How long the data is kept | 8 years minimum after no longer required |
| Our lawful basis for holding this data | Public task |
| Your rights |
|
| How can you withdraw your consent? |
Yes - via designated mailbox |
| Is the data subject to decisions made solely by computers? (automated decision making) | No |
| Where does this data come from? | Data Subject |
| The legal basis for collecting this data | Public task and Health and Social Care Act (2012) – Additional Functions |
