Privacy policy

This privacy policy describes how the South West Secure Data Environment (SDE) uses and protects information you give us when using our website.

What information we collect and how we use it

Any personal information we hold about you is stored and processed in accordance with the UK’s Data Protection Act 2018 and the General Data Protection Regulation (GDPR) and UK GDPR.

Automatic information

We automatically receive certain types of information whenever you interact with this website. We use the information to monitor website traffic and to assist with the navigation and user experience of the website. Any disclosure of this information will be in aggregate form and will not identify individual users.

Information that we receive automatically includes:

  • Website usage data
  • User data such as your IP address and details of your browser and device

Information you choose to give us

If you choose to complete our contact form, we will collect the following information:

  • Your name
  • Your email address
  • Your message, which may contain personal information

This information will be emailed to bnssg.swsde@nhs.net so that we can respond to your request.

Retention of your data

We will retain data for as long as required for the purpose for which it was collected.

Lawful basis

Personal data collected through this website is processed on the basis of your consent to do so (GDPR Article 6.1(a)) or under the legitimate interests of the relevant parties (Article 6.1(f)).

Cookies

We use cookies to operate the website and to track how people use it. A cookie is a small file stored on your computer or device, which enables our website to identify your computer or device as you view our website pages. All the information collected is anonymous and we do not use it for any other purpose. You can accept or decline cookies by using the cookie link in the bottom left hand corner. See our cookies page for more information.

Third-party service providers

We use the following third-party service providers to process and store your data:

  • Google Analytics (owned by Google LLC), which we use to monitor usage of our website. Google Analytics collects IP addresses so it can report things like whether people return to our website or what country visitors come from. GDPR considers IP addresses to be personal information. However, IP addresses are not linked to other personally identifiable data, and IP addresses are not available in Google’s reporting tools. Read Google’s privacy policy. To opt out of being tracked by Google Analytics across the website, visit https://tools.google.com/dlpage/gaoptout

How to make a request about your data

NHS Bristol, North Somerset and South Gloucestershire Integrated Care Board (BNSSG ICB) is the Data Controller for this website. We control the purpose and means of the data collected from this site.

You can contact us to ask us what data we hold about you, who has access to it and how it is being used. We will also delete any data about you that we hold if you ask us to.

If you have any concerns as to how your personal data is processed, you can contact the Data Protection Officer on bnssg.data.protection@nhs.net.

It is also your right to submit a complaint to the Information Commissioner’s Office (ICO). Further details can be found at www.ico.org.uk.

Version 1 published 22 October 2024.