This is Mother’s Touch Care Limited’s Privacy Notice.
As part of the services we offer, we are required to process personal data about our staff, our service users and, in some instances, the friends or relatives of our service users and staff. “Processing” can mean collecting, recording, organising, storing, sharing or destroying data.
We are committed to being transparent about why we need our personal data and what we do with it. This information is set out in this privacy notice. It also explains our rights when it comes to us.
If you have any concerns or questions, please contact us:
Contact details:
Phone: 020 8058 1618
Email: info@motherstouchcare.co.uk
What data do we have?
So that we can provide a safe and professional service, we need to keep certain records about you. We may process the following types of data:
Your basic details and contact information e.g. your name, address, date of birth and next of kin.
Your financial details e.g. details of how you pay us for your care or your funding arrangements.
We also record the following data which is classified as “special category”:
Health and social care data about you, which might include both your physical and mental health data.
Why do we have this data?
We need this data so that we can provide high-quality care and support. By law, we need to have a lawful basis for processing your personal data.
We process your data because
We have a legal obligation to do so – generally under the Health and Social Care Act 2012 or Mental Capacity Act 2005.
We process your special category data because
It is necessary due to social security and social protection law (generally this would be in safeguarding instances)
It is necessary for us to provide and manage social care services.
We are required to provide data to our regulator, the Care Quality Commission (CQC), as part of our public interest obligations.
We may also process your data with your consent. If we need to ask for your permission, we will offer you a clear choice and ask that you confirm to us that you consent. We will also explain clearly to you what we need the data for and how you can withdraw your consent at any time.
Common law duty of confidentiality
In our use of health and care information, we satisfy the common law duty of confidentiality because:
You have provided us with your consent (either implicitly to provide you with care, or explicitly for other uses)
We have a legal requirement to collect, share and use the data
The public interest to collect, share and use the data overrides the public interest served by protecting the duty of confidentiality (for example sharing information with the police to support the detection or prevention of serious crime).
Where do we process your data?
So that we can provide you with high quality care and support we need specific data. This is collected from or shared with:
We do this face to face, via phone, via email, via our website, via post, via application forms, via apps etc
Third parties are organisations we might lawfully share your data with. These include:
Other parts of the health and care system such as local hospitals, the GP, the pharmacy, social workers, clinical commissioning groups, and other health and care professionals.
The Local Authority.
Your family or friends – with your permission.
Organisations we have a legal obligation to share information with i.e. for safeguarding, the CQC.
The police or other law enforcement agencies if we have to by law or court order.
Check our detailed guidance on National Data Opt-Out.
We review our data processing on an annual basis to assess if the national data opt-out applies. This is recorded in our Record of Processing Activities. All new processing is assessed to see if the national data opt-out applies.
If any data processing falls within scope of the National Data Opt-Out we use MESH to check if any of our service users have opted out of their data being used for this purpose.
At this time, we do not share any data for planning or research purposes for which the national data opt-out would apply. We review all of the confidential patient information we process on an annual basis to see if this is used for research and planning purposes. If it is, then individuals can decide to stop their information being shared for this purpose. You can find out more information at https://www.nhs.uk/your-nhs-data-matters/.
We are applying the national data opt-out because we are using confidential patient information for purposes beyond individual care.
The information collected about you when you use health and care services can also be used and provided to other organisations for purposes beyond your individual care, for instance to help with improving the quality and standards of care provided research into the development of new treatments preventing illness and diseases monitoring safety planning services.
This may only take place when there is a clear legal basis to use this information. All these uses help to provide better health and care for you, your family and future generations. Confidential patient information about your health and care is only used like this when allowed by law.
Most of the time, the data used for research and planning is anonymised, so that you cannot be identified, and your confidential patient information is not accessed.
You have a choice about whether you want your confidential patient information to be used in this way. If you are happy with this use of information you do not need to do anything. If you do choose to opt out your confidential patient information will still be used to support your individual care.
To find out more or to register your choice to opt out, please visit www.nhs.uk/your-nhs-data-matters.
You can change your mind about your choice at any time.
What data do we have?
So that we can provide a safe and professional service, we need to keep certain records about you. We may record the following types of data:
Your basic details and contact information e.g. your name, address, date of birth, National Insurance number and next of kin.
Your financial details e.g. details so that we can pay you, insurance, pension and tax details.
Your training records.
We also record the following data which is classified as “special category”:
Health and social care data about you, which might include both your physical and mental health data – we will only collect this if it is necessary for us to know as your employer, e.g. fit notes or in order for you to claim statutory maternity/paternity pay.
There is detailed information on what employee data you can keep here.
As part of your application you may – depending on your job role – be required to undergo a Disclosure and Barring Service (DBS) check (Criminal Record Check). We do not keep this data once we’ve seen it.
Why do we have this data?
We require this data so that we can contact you, pay you and make sure you receive the training and support you need to perform your job. By law, we need to have a lawful basis for processing your personal data.
We process your data because you may not use all of these lawful bases so delete as appropriate.
We have a legal obligation under UK employment law.
We are required to do so in our performance of a public task.
We have a legitimate interest in processing your data – for example, we provide data about your training to Skills for Care’s Adult Workforce Data Set, this allows Skills for Care to produce reports about workforce planning
We are required to provide data to our regulator, the Care Quality Commission (CQC), as part of our public interest obligations.
We process your special category data because,
It is necessary for us to process requests for sick pay or maternity pay.
If we request your criminal records data, it is because we have a legal obligation to do this due to the type of work you do. This is set out in the Data Protection Act 2018 and the Rehabilitation of Offenders Act 1974 (Exceptions) Order 1975. We do not keep a record of your criminal records information (if any). We do record that we have checked this.
We may also process your data with your consent. If we need to ask for your permission, we will offer you a clear choice and ask that you confirm to us that you consent. We will also explain clearly to you what we need the data for and how you can withdraw your consent.
Where do we process your data?
As your employer we need specific data. This is collected from or shared with:
We do this face to face, via phone, via email, via our website, via post, via application forms, via apps etc.
Third parties are organisations we have a legal reason to share your data with. These include:
Her Majesty’s Revenue and Customs (HMRC).
Our pension and healthcare schemes.
Our external payroll provider.
Organisations we have a legal obligation to share information with i.e. for safeguarding, the CQC.
The police or other law enforcement agencies if we have to by law or court order.
The DBS Service provide details of the umbrella organisation used if not the DBS service directly
What data do we have?
As part of our work providing high-quality care and support, it might be necessary that we hold the following information on you.
Your basic details and contact information e.g. your name and address.
Why do we have this data?
By law, we need to have a lawful basis for processing your personal data.
We process your data because we have a legitimate business interest in holding next of kin and lasting power of attorney information about the individuals who use our service and keeping emergency contact details for our staff.
We may also process your data with your consent. If we need to ask for your permission, we will offer you a clear choice and ask that you confirm to us that you consent. We will also explain clearly to you what we need the data for and how you can withdraw your consent.
Where do we process your data?
So that we can provide high quality care and support we need specific data. This is collected from or shared with:
We do this face to face, via phone, via email, via our website, via post, via application forms, via apps etc.
Third parties are organisations we have a legal reason to share your data with. These may include:
Other parts of the health and care system such as local hospitals, the GP, the pharmacy, social workers, and other health and care professionals.
The Local Authority.
The police or other law enforcement agencies if we have to by law or court order.
Tell people how or where you keep their personal information, including where you use third parties to store data on your behalf, and how long you intend to keep it for. Refer to the NHS Records Management Code of Practice, which also applies to adult social care, for guidance on retention periods. Otherwise, you will need to justify the retention period, stating the legal basis (where applicable) for retaining the record.
You must also explain how you then intend to securely destroy or dispose of the information, archive it, or take any other action, such as anonymise it. You could reference the Records Management Code of Practice, which recommends disposal actions for different types of records. Alternatively, you could reference your organisation’s records management policy.
Your information is securely stored for the time periods specified in the Records Management Code of Practice. We will then dispose of the information as recommended by the Records Management Code for example we will
securely dispose of your information by shredding paper records or wiping hard drives to legal standards of destruction, archive your information etc
Our website
In order to provide you with the best experience while using our website, we process some data about you.
Your rights
The data that we keep about you is your data, and we ensure that we keep it confidential and that it is used appropriately. You have the following rights when it comes to your data:
You may need to provide adequate information for our staff to be able to identify you, for example, a passport or driver’s licence. This is to make sure that data is not shared with the wrong person inappropriately. We will always respond to your request as soon as possible and at the latest within one month.
If you would like to complain about how we have dealt with your request, please contact:
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
