All Local Authorities have a duty to improve the health of the population they serve. To help with this, our Public Health team use data and information from a range of sources including information collected at the registration of a birth or a death and client/customer use of provider services as commissioned by Norfolk County Council. Although not direct care, this helps us to understand more about the health and care needs of the population/s in our area. We can use the data to measure the health, mortality, morbidity and care requirements of our population, allowing us to plan and deliver health and care services in a coordinated and efficient way.
We act as a ‘data processor and controller’. This means that we collect and process information. We also follow the high information governance standards and instructions as set by NHS Digital.
We work with many types of data to be able to promote health and support improvements in the delivery of health and care services in Norfolk. This includes processing:
We hold the following data collections that contain various different types of data about individuals and populations:
We have different legal responsibilities for different types of information we hold and analyse in the Public Health Information team. We follow Section 42(4) of the SRSA (2007) as amended by section 287 of the Health and Social Care Act (2012) and Regulation 3 of the Health Service (Control of Patient Information) Regulations 2002.
All the data we process and hold is kept safely and securely within our IT systems. When not in use our PCMD data is encrypted to AES standard 256 level.
We do not disclose any data to a third party who is not identified on our license agreement with NHS Digital. Any data requests received from a third party will only receive anonymised and aggregated data to a level that complies with the Office of National Statistics Disclosure Guidance or, we are required to do so for legal reasons
You have the right to opt out of Norfolk County Council Public Health receiving and processing your personal identifiable information. There are occasions where service providers will have a legal duty to share information, for example for safeguarding or criminal issues. The process for opting out will depend on what the specific data is and what programme it relates to. You can choose not to have information about you shared or used for any purpose beyond providing your own treatment or care. In order to opt out of your data being used contact the Information Commissioners Officer via email at email@example.com or visit their website. Alternatively, contact your GP for further information about registering an opt-out or to end an opt-out you have already registered. The NHS Choices website explains how your personal information is held, accessed and shared with organisations, such as Norfolk County Council.
To make a request for personal information you will need to put the request in writing to:
Information Compliance Team
For independent advice about the use of your data, contact the Information Commissioners Office.