The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU).
The GDPR sets out the principles for data management and the rights of the individual, while also imposing fines that can be revenue-based. The General Data Protection Regulation covers all companies that deal with data of EU citizens, so it is a critical regulation for corporate compliance officers at banks, insurers, and other financial companies. GDPR came into effect across the EU on May 25, 2018.
Sensi Treatment Ltd collects and holds personal data – not only about our patients, but also staff, parents, volunteers, visitors, suppliers and other ‘data subjects’. GDPR requires us to not only minimise any risks to the unauthorised access and loss of personal data within the organisation, but also to provide evidence and documentation of processing activity.
To ensure we commit to the GDPR compliance we are doing the following;
Sensi Treatment Ltd, collect and process large amounts of data. Our responsibility as custodians of this data is taken very seriously and we take opportunities that the GPDR provides, to make improvements in how we handle data.
The GDPR project is ongoing and we are committed in developing the privacy programme to ensure we are always approaching the data we hold lawfully. Whilst there will be ongoing changes, we will ensure that there are no negative effects on the treatment given to patients and the welfare of patients and staff.
For more information contact the main office via email@example.com
The data protection officer can be contact via firstname.lastname@example.org