How we use your information
At New Collegiate Medical Centre, we collect and use information about you to provide safe, effective, and high‑quality healthcare.
This privacy notice explains:
- What information we collect
- Why we collect it
- How we use and protect it
- Your rights
Who we are
New Collegiate Medical Centre is the Data Controller for your personal data.
Contact details:
407 Cheetham Hill Road
Manchester
M8 0DA
0161 205 4364
Data Protection Officer (DPO)
We have access to a Data Protection Officer via our NHS Integrated Care Board.
Please contact the practice and we will direct your query appropriately.
What information we collect
We collect and process the following types of information:
- Personal details (name, date of birth, address, telephone number, NHS number)
- Medical information (medical history, diagnoses, medications, test results)
- Administrative details (appointments, referrals, correspondence)
We may also receive information about you from:
- Hospitals and community services
- Other GP practices
- NHS systems and services
Why we collect your information
We use your information to:
- Provide you with medical care and treatment
- Coordinate care with other healthcare professionals
- Arrange referrals to hospitals and specialists
- Support public health and safeguarding requirements
- Meet legal and NHS England obligations
- Help improve NHS services through audits, planning, and approved research
Our legal basis for using your data
We process your personal information under the following legal bases:
- Article 6(1)(e) – Public task (providing healthcare services)
- Article 6(1)(c) – Legal obligation
- Article 9(2)(h) – Provision of health or social care
How we store and protect your data
Your records are stored securely on NHS‑approved systems (such as EMIS).
We protect your information by:
- Restricting access to authorised staff only
- Using secure NHS IT systems
- Applying encryption and data security controls
- Training staff in confidentiality and data protection
Who we share your information with
We only share your data when necessary and lawful. This may include:
- Hospitals, specialists, and community care teams
- Pharmacies
- Other GP practices (when you register or move)
- NHS England and NHS Digital
- Your local Integrated Care Board (ICB)
- Social care and safeguarding services
- Approved NHS systems such as:
- Summary Care Record (SCR)
- GP Connect
We do not share your data for commercial purposes.
National Data Opt-Out
The NHS may use your confidential information for research and planning.
You have the right to opt out of this.
For more information or to set your preference, visit:
How long we keep your data
We keep your records in line with the NHS Records Management Code of Practice.
This means your records are kept securely for as long as necessary to support your care and meet legal requirements.
Your rights
You have the right to:
- Access your records (Subject Access Request)
- Correct inaccurate information
- Request restriction of processing (where appropriate)
- Object to processing (in certain circumstances)
- Request that we do not share your data (unless legally required)
Because medical records are a legal document, we do not routinely delete clinical information. However, you can request that a note is added to your record if you disagree with something.
Automated decision-making
We do not use automated decision-making systems that affect your care.
Transfers outside the UK
We do not routinely transfer your personal data outside the United Kingdom.
Raising concerns
If you have any concerns about how your information is used, please contact us
We will respond and try to resolve your concern.
Your right to complain
You can also complain to the Information Commissioner’s Office (ICO):
Website
Telephone
0303 123 1113
Changes to this notice
We may update this privacy notice from time to time. The latest version will always be available on our website and at reception.