The GDPR is Europe's framework for data protection laws. The legislation is designed to harmonise data privacy laws across Europe as well as give greater protection and rights to individuals.
Express Nursing is committed to protecting the privacy and personal data of all individuals we work with, including service users, staff, and partners.
We comply fully with the UK GDPR and Data Protection Act, ensuring personal data is handled lawfully, fairly, and securely.
Personal data includes any information about a living individual which could make them identifiable. We recognise that some data is particularly sensitive and requires enhanced protection. There are two types of personal data:
| Personal Data | Sensitive Personal Data |
|---|---|
| Name | Racial or ethnic origin |
| Address | Political opinions |
| Medical details or banking details | Religion |
| Place of birth | Membership of a trade union |
| Contact numbers | Health |
| Gender | Sex life |
| Marital status | Criminal activity |
We collect and process personal data to:
All data is processed only where there is a lawful basis to do so.
We respect the rights of individuals under GDPR, including:
We take appropriate technical and organisational measures to ensure personal data is protected against:
All staff are trained in data protection responsibilities and expected to follow strict confidentiality standards.
Where consent is required, we ensure it is freely given, specific, informed and unambiguous. We are transparent about what data we collect, why we collect it, and how it is used. Individuals can withdraw consent at any time.
