When you ring the practice or send us an email, we will use the details you give us to offer you an appointment at the practice. (If you choose not to proceed with an appointment, your details will not be stored.)
Before you attend a consultation with Dr Laura Corr, we require all patients to register with us and at that stage we find out how you prefer to communicate with us (post, email or mobile telephone). Your personal details can be updated by contacting the practice.
Use of email: Many patients prefer us to communicate with them and their GP and other consultants by email. Please note that for confidentiality all email correspondence is encypted by Egress Software in line with the GDPR Regulation on patient data.
If you would prefer not to use email, please let us know and we will be happy to correspond with you by post.
Please note that Laura Corr’s practice receives numerous emails every day. All emails that we receive will be read by Dr Corr’s administrative staff but not necessarily by Dr Corr herself. This means that any medical enquiries should not be sent by email – please call the practice office directly with any questions or concerns.
All your personal details will be stored on our practice database and any medical information you give us will contribute to your medical record.
Your medical record and how we use it
Invoices submitted to private medical insurance providers for payment do not include details about diagnoses or medication but will itemise any investigations that have been carried out at the practice. In the event that an invoice remains unpaid, data may need to be shared with other professionals such as debt collection agencies or solicitors, but this will not include medical details.
Personal data will not be used for marketing purposes in any way. We do not share or disclose any of your personal information without your consent, other than for the purposes specified above; where there is a legal requirement; or in performance of our contractual requirements. We conduct internal clinical audits from time to time, and data may be used for this purpose, but in an anonymised and unidentifiable format.
Storage of your patient information
We use a clinical software program called Private Practice Manager, provided by PPM Software Limited, to store administrative, medical and financial information on our patients. PPM is fully compliant with GDPR. This is a remote cloud-based system with on-site back-up within the EU and is accessible by Dr Laura Corr and her administrative team.
We also have paper files on each current patient, which are stored in lockable filing cabinets within our offices at 88, Harley Street. The offices are locked outside office hours and the building is secure and staffed by Harley Street Clinic employees. Notes on discharged patients are scanned into Private Practice Manager and retained for the minimum eight years in line with BMA (British Medical Association) guidelines.
All our administrative staff have confidentiality clauses in their contracts. The administrators have full access to all our patient data, but do not access data unnecessarily and only view the information they need to see at a given time. Dr Laura Corr is the main person responsible for data protection at the practice and has full access to all data.
Patients are sent a copy of Dr Laura Corr’s clinic letters after every consultation, together with relevant test results.
Our IT support is provided by HCA Healthcare UK (https://www.hcahealthcare.co.uk) and Chris Dyer (https://cdyer.co.uk). Each of these organisations is bound by its own confidentiality codes in respect of any data visualised in the process of fixing any software or hardware issues with computers or other electronic devices.
If you want to see your records, please go to the 'Your rights' section below which explains how to make a request in writing.
Your personal data may be transferred outside the UK and the European Economic Area. While some countries have adequate protections for personal data under applicable laws, in other countries steps will be necessary to ensure appropriate safeguards apply to it.
When you visit our website and browse through it, read pages or download information, we will automatically gather, store and transfer different kinds of personal information about you.
This information does not identify you personally. We use it to help us make our site more useful to visitors, to learn about the number of visitors to our site and the types of technology our visitors use.
We have grouped together this personal data as follows:
Technical Data: This includes Internet protocol (IP) address, browser type and version, time zone setting and location, browser plugin types and versions, operating system and platform and other technology on the devices you use to access this website.
Usage Data: This is information about how you use our website.
You have many rights relating to your personal data, including:
Please note there may be instances where we refuse your request for any of the above (unless otherwise stated) where we have a strong overriding reason or are legally obliged to.
If you wish to exercise any of your rights, have a complaint or questions please write to:
88, Harley Street
We keep this Policy under regular review and update it from time to time. Please review this policy periodically for changes. If you do not accept the amended Policy, please stop using this website.