Sensi Sensory Integration Therapy
Flat 5, Richmond Lodge
The Lodge, Mulbarton,
The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU). The GDPR sets out the principles for data management and the rights of the individual, while also imposing fines that can be revenue-based. The General Data Protection Regulation covers all companies that deal with data of EU citizens, so it is a critical regulation for corporate compliance officers at banks, insurers, and other financial companies. GDPR came into effect across the EU on May 25, 2018.
Sensi Treatment Ltd collects and holds personal data – not only about our patients, but also staff, parents, volunteers, visitors, suppliers and other ‘data subjects’. GDPR requires us to not only minimise any risks to the unauthorised access and loss of personal data within the organisation, but also to provide evidence and documentation of processing activity.
To ensure we commit to the GDPR compliance we are doing the following;
- Documenting our processing activity, ensuring we have a lawful basis for processing
- Auditing this process and identifying potential risks, to then create a plan to reduce the risks to personal data.
- Documenting the compliance of third-party providers and reviewing contracts to ensure they comply with GDPR
- To have processes and procedures in place to ensure the rights of data subjects
- Reviews of technical and organisational measures in place to protect data
- All staff members are trained on GPDR and our data handling procedures
Sensi Treatment Ltd, collect and process large amounts of data. Our responsibility as custodians of this data is taken very seriously and we take opportunities that the GPDR provides, to make improvements in how we handle data.
The GDPR project is ongoing and we are committed in developing the privacy programme to ensure we are always approaching the data we hold lawfully. Whilst there will be ongoing changes, we will ensure that there are no negative effects on the treatment given to patients and the welfare of patients and staff.
For more information contact the main office via email@example.com
The data protection officer can be contact via firstname.lastname@example.org