At Lyme Bay Medical Practice, we use modern digital systems to manage your appointments, prescriptions, and medical records. We are committed to keeping these systems completely secure, accurate, and available whenever you need care.

To protect your information, our practice follows strict IT security standards across three main areas:

1. Confidentiality (Keeping your data private)

• Strict access controls: Only authorised staff members who are actively involved in your care can log into our clinical systems.
• Secure sharing: We never disclose your information to anyone who does not have a verified, legal right to see it.

2. Integrity (Keeping your data accurate)

• Careful updates: Our staff follow strict verification steps—such as confirming your name, address, and date of birth—before updating any screen or electronic record.
• Error reporting: We actively monitor our systems and immediately investigate and resolve any data errors.

3. Availability (Keeping our systems running)

• Physical security: All of our computer equipment and servers are physically protected from unauthorised access or intruders.
• Regular backups: Your medical records are backed up automatically at secure, regular intervals so your history is never lost.
• Disaster recovery: We maintain and regularly test backup plans so the practice can continue treating patients safely in the event of a power cut, system failure, or hardware theft.

Our legal responsibilities

Our IT practices fully comply with all UK data and safety legislation, including:

• The Data Protection Act (2018) / UK GDPR
• The Access to Health Records Act (1990)
• The Health and Safety at Work Act

If you have any questions about how our technology keeps your information safe, please contact Sarah Hill, Practice Manager via email to administrator.lyme@dorsetgp.nhs.uk