Brain Injury Care Provider

Agreement for Compliance with the General Data Protection Regulation

The company is registered with the Information Commissioner’s Office as data controller and has a legal requirement to comply with the General Data Protection Regulation (GDPR) which came into force on 25 May 2018.

I understand that during my work at the company, I will have access to personally identifiable information about individuals, some of which are sensitive data/special category data such as data concerning individuals’ racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, health, sex life or sexual orientation. In order to fulfil my duty to ensure the company is compliant with the GDPR, I agree that I am required to:

  1. Read and understand the company GDPR-specific policies and procedures, and resources.
  2. Undertake GDPR Awareness training.
  3. Only process personal data for which there is at least one lawful basis (Consent, Contract, Legal Obligation, Vital Interests, Public Task, and Legitimate Interests.)
  4. Ensure that where processing is based on individuals’ consent, there is evidence of affirmative consent.
  5. Only process personal data that are within their retention period.
  6. Inform the Data Protection Officer if it comes to my attention that the personal data in use has exceeded its retention period.
  7. Only process personal data that is adequate, relevant and limited to what is necessary for processing.
  8. Ensure the personal data I am processing is accurate and up to date.
  9. Inform immediately the Data Protection Officer of any requests that I may receive from individuals in exercising their rights under the GDPR.
  10. Only use removable media authorised by the Data Protection Officer.
  11. Seek written authorisation from the Data Protection Officer before using my own personal devices to access company network.
  12. Keep paper records in lockable cabinets in staff-only offices.
  13. Encrypt personal data before saving them on the cloud.
  14. Seek advice from the Data Protection Officer if in doubt about any aspect of compliance with the GDPR.

Information we hold about you

  1. Full name
  2. Address
  3. Date of Birth
  4. Telephone Number
  5. Next of kin
  6. Health status
  7. Religious/cultural beliefs
  8. Bank details

The above information is kept in your file in a locked cabinet. Access to this information is on a need to know basis only, this information is also stored on our software which is password protected and has limited access. Authorised individuals who can access this software are the office staff team.

We are required by law to work with our regulators, the Care Quality Commission and they will require access to files for regulatory purposes.

We may be required to share your data should we suspect you have been subject to criminal act or there are safeguarding concerns and in these circumstances we will act in line with our duty of care.

I have attached a signature form for you to sign to agree that you are aware of the information that we hold about you and that you are happy that we have this information and that you are aware of third parties that we are required to share your information within.

Staff consent for Data Storage – For General Data Protection Regulations 2018

I (Employee Name) have been informed by my employer Almond Care of the information / data they hold about me and the companies that they are required to share some of my data with.

I understand this data will be held in my personnel file and may be shared with the Care Quality Commission for regulatory processes and inspection.

I understand my data may be shared with external agencies in the event of a criminal act or safeguarding concern.

I consent to Almond Care holding and processing my data as set out above.

Enter Name
If you would like to see full details of our data practices please visit our Privacy Policy and if you have any questions please email

Call us today!

For a free, no-obligation discussion about our UK complex care in the home for brain injury, spinal cord injury, long-term ventilation, cerebral palsy, multiple sclerosis, muscular dystrophy and other neurological conditions, please click here or call 024 7610 2333.