Privacy Policy

This privacy statement applies to the use of our website ( and our online communications policy (the Policy). Links from this site to other websites are not covered by the Policy. This statement outlines how we will use and protect sensitive personal information that you provide to us about yourself as a patient or as a referring dental practitioner under the following headings:

  • Sensitive Personal Data
  • Third Parties
  • Data Protection Act 1998
  • What if you are not happy or wish to raise a concern about our data processing?
  • Cookie Policy
  • Website Security
  • How long is the Personal Data stored for?

Sensitive Personal Data

Our GDC registered personnel have a duty of confidentiality in respect of all sensitive patient data entrusted to our care.

We may collect and process personal information if you visit our website and if for example, you take part in a consultation or survey, use any online forms or questionnaires, or when you email us your personal details.  If you apply to register with our practice as a new patient we will also need to collect and process personal information, such as patient clinicial and health data and correspondence.

Whilst we take all of our data protection responsibilities extremely seriously, we urge all patients to notify us of their preferred method of communication (telephone, mobile phone/text, letter or e-mail).

If you use e-mail services to transfer sensitive personal data to us we cannot accept any responsibility for the security of this data. When e-mail services are used for convenience we advise that none of your personal data are included in these messages.

Why we process Personal Data (what is the “purpose”?)

“Process” means we obtain, store, update and archive data.

  • Patient data is held for the purpose of providing patients with appropriate, high quality, safe and effective dental care and treatment.
  • Staff employment data is held in accordance with Employment, Taxation and Pensions law.
  • Contractors’ data is held for the purpose of managing their contracts.

What is the Lawful Basis for processing Personal Data?

The Law says we must tell you this:

  • We hold patients’ data because it is in our Legitimate Interest to do so. Without holding the data we cannot work effectively. 
  • We hold staff employment data because it is a Legal Obligation for us to do so.
  • We hold contractors’ data because it is needed to Fulfil a Contract with us.

Third Parties 

We communicate with other organisations (for example NHS Hospitals, GPs, Specialists and Dental Laboratories) in order to assist us with delivering high quality personal services.  Patient data may also be stored for back-up purposes with our computer software suppliers who may also store it securely.  If we need to transfer/share any of your personal data to a third party we will ensure:

  • They are only provided with the information they need to carry out the service;
  • They agree not to use the information received from us for any other purpose than those specified by us; and
  • They have the proper systems in place to protect personal data.

We may also from time to time disclose information to third parties such as government bodies or educational establishments for research purposes, or to produce anonymous statistics.  In such cases we will ensure that any personal data transfers are protected under a written contract:

  • They are only provided with the information they need to carry out the research;
  • They agree not to use the information received from us for any other purpose than those specified by us; and
  • They have the proper systems in place to protect personal data.

Data Protection Act 1998 (DPA)

Each member clinic of SDC Group is registered under the DPA and particulars of our Registration can be verified at

You have the right to:

  • Be informed about the personal data we hold and why we hold it.
  • Access a copy of your data that we hold by contacting us directly: we will acknowledge your request and supply a response within one month or sooner.
  • Check the information we hold about you is correct and to make corrections if not
  • Have your data erased in certain circumstances.
  • Transfer your data to someone else if you tell us to do so and it is safe and legal to do so.
  • Tell us not to actively process or update your data in certain circumstances.

Our staff comply with all aspects of the DPA in accordance with the SDC Group Data Protection Code of Practice.

What if you are not happy or wish to raise a concern about our data processing?

You can complain in the first instance to our Data protection Officer, who is Christopher Friel ( and we will do our best to resolve the matter.  If this fails, you can complain to the Information Commissioner at or by calling 0303 123 1113.

Cookie Policy

This website uses cookies.  A ‘cookie’ is a piece of information, like an electronic tag, which some websites create to enable the web server to collect information from your computer. The ‘cookies’ we use log your progress through the site and record how you accessed the site. They do not collect any personal information about you or about the use of your computer or Internet browsing in any way.

If you do not want cookies to be created on your computer, modern web browsers give you the option to disable them.  Please bear in mind that some personalised services on our website may not be available if you choose to disable cookies.

By accessing this website, you agree that the Cookie Policy will apply whenever you access this website on any device.

Any changes to this policy will be posted here. We reserve the right to vary this Cookie Policy from time to time and such changes shall become effective as soon as they are posted.  Your continued use of this website constitutes your agreement to all such changes.

Website Security

We are careful to protect the security of your personal data and the details of any transactions you make with us over the Internet.

We do this by putting in place and carefully administering a secure IT infrastructure in accordance with industry standards and best practice.

How long is the Personal Data stored for?

  • We will store patient data for as long as we are providing care, treatment or recalling patients for further care. We will archive (that is, store it without further action) for as long as is required for legal purposes as recommended by the NHS or other trusted experts recommend.
  • We must store employment data for six years after an employee has left.
  • We must store contractors’ data for seven years after the contract is ended.