GDPR Training policy
As part of the induction of a new starter or transition of a practice, it is now mandatory that all new team members or locums joining the HG group complete their GDPR training modules and be accredited to comply with EU regulations.
The training is an ongoing part of practice operation and as a result of this, it will be a requirement for all team members at HQ and practice to complete a refresher course for GDPR every twelve months.
What is the general data protection regulation?
The General Data Protection Regulation (GDPR) standardises data protection law across all 28 EU countries and imposes strict new rules on controlling and processing personally identifiable information (PII). It also extends the protection of personal data and data protection rights by giving control back to EU residents. GDPR replaces the 1995 EU Data Protection Directive, and went into force on May 25, 2018. It also supersedes the 1998 UK Data Protection Act.
There are many essential items in the regulation, including increased fines, breach notifications, opt-in consent and responsibility for data transfer outside the EU. As a result, the impact to businesses is huge and will permanently change the way customer data is collected, stored, and used.
GDPR applies to all organisations holding and processing EU resident’s personal data, regardless of geographic location. Many organisations outside the EU are unaware that the EU GDPR regulation applies to them as well. If an organisation offers goods or services to, or monitors the behaviour of EU residents, it must meet GDPR compliance requirements.
How have Hakim Group supported the practices?
As part of the package we give to our partners we provide all practices with a set of policies, procedures, including a training platform, to complete the essential training and accreditation. All practices should have a dedicated member of the team who will act as the ISM (Information security Manager). They will oversee the use of patient data and make the GDPR team (ISMS team) aware in the event of a breach.
How do I complete the training?
The training module is completed through the HG Academy platform and instructions on how to access this are inlcuded in the related article listed below.