Porterhouse Medical Group: Data Protection Policy
In the course of its business activities, Porterhouse Medical Group will process personal data within the guidelines of Article 28 of the EU General Data Protection Regulation 2016/679 (‘GDPR’).
We recognise that such data must be treated lawfully, sensitively and transparently, and we shall ensure that we have technical and organisational measures in place at all times to guard against unauthorised or unlawful processing of personal data and/or accidental loss or destruction of or damage to personal data.
We will ensure that staff with access to personal data have committed themselves to confidentiality or are subject to an appropriate statutory obligation of confidentiality.
We recognise that we have a duty to respond to data subject rights requests (e.g. Articles 15–20 of the GDPR) and will do so in a prompt and transparent manner.
Porterhouse Medical Group is registered with the Information Commissioner’s Office (‘ICO’; ZA333640). Should an individual be dissatisfied with how we process their personal data, they may make a complaint to the ICO.
The responsibility for updating this policy rests with our Data Protection Officer, and any queries should be addressed to them: firstname.lastname@example.org.