Cookies on this website

This website would like to use analytics cookies. These send information about how our site is used to a service called Google Analytics. We use this information to improve our site.

Let us know if this is OK. We'll also use a cookie to save your choice. You can read more about how Google uses cookies.

Drs Foster, Logan, and Macdonald

Drumchapel Health Centre, 80-90 Kinfauns Drive, Glasgow, G15 7TS

Telephone: 0141 211 6090

We're open

Privacy Notice

Your information – a simple summary

We keep records about you so we can provide safe, effective and coordinated healthcare.

What information do we hold?

We record details such as:

  • Your name, address and contact details
  • Your CHI number and registration details
  • Your medical history, treatment and care
  • Test results and correspondence from other healthcare services

We may also collect limited information when you use our website.
For further details, please see our website provider’s privacy policy.

Why do we use your information?

We use your information to:

  • Provide care and treatment
  • Work with hospitals and other NHS Scotland services
  • Plan and improve healthcare services

Do we share your information?

Yes — but only when necessary and lawful. For example:

  • With NHS Scotland services involved in your care
  • With organisations supporting the planning and delivery of healthcare

All organisations receiving your information must keep it confidential and secure.

Can I choose how my data is used?

In some cases, your information may be used to help plan and improve NHS Scotland services.

  • You can ask us how your information is used
  • You can object to certain uses, including national planning or research programmes (such as GP data systems)
  • Your care will not be affected by your decision

Please contact the practice if you would like more information.

Your rights

You have the right to:

  • Access your records
  • Request corrections
  • Ask questions about how your information is used

Full Privacy Notice

1. Introduction

This privacy notice explains how Foster, Logan, and Macdonald Practice collects, uses and protects your personal information.

It applies to all personal data processed by the practice, including information you provide directly and information received from other healthcare providers.

2. Who we are

Foster, Logan, and Macdonald Practice is the data controller for your personal information.

We are responsible for ensuring that your data is handled in accordance with data protection law and NHS Scotland standards.

3. What information we collect

We collect and process the following information:

Personal data

  • Name, address, date of birth and contact details
  • CHI number and GP registration information

Special category data (health information)

  • Medical history, diagnoses and treatment
  • Appointment records and clinical notes
  • Test results and investigations
  • Information from other healthcare professionals involved in your care

We may also collect limited information via our website provider. For further details, please see SurgeryWeb’s Privacy Policy

4. Why we use your information

We use your information to:

  • Provide safe and effective healthcare
  • Coordinate your care with NHS Scotland services
  • Protect public health
  • Plan and improve healthcare services
  • Carry out clinical audit and quality assurance
  • Meet legal and regulatory requirements

5. Legal basis for processing

We process your information in accordance with:

  • UK General Data Protection Regulation (UK GDPR)
  • Data Protection Act 2018

Our lawful bases include:

  • Article 6(1)(e) – Public task (provision of healthcare)
  • Article 9(2)(h) – Health or social care purposes

We also comply with:

  • Common Law Duty of Confidentiality
  • Human Rights Act 1998
  • NHS Scotland Codes of Practice (Confidentiality, Information Security and Records Management)
  • Caldicott Principles (“Information: To Share or Not to Share”)

6. Confidentiality and data security

All NHS staff have a legal duty to keep your information confidential.

We protect your information by:

  • Using secure NHS systems
  • Restricting access to authorised staff
  • Providing staff training in data protection
  • Following NHS Scotland information governance standards

7. Sharing your information

We may share your information when it is necessary and lawful, including with:

  • NHS Scotland organisations (e.g. hospitals and specialists)
  • Community health and social care services
  • Laboratories and diagnostic services
  • Public health and government bodies

Information is shared only where required and in line with legal and professional obligations.

8. Use of information for planning and research (Scotland)

NHS Scotland may use health information to support service planning, improvement and research.

Where possible:

  • Information is anonymised or pseudonymised
  • Strict safeguards are applied

You have the right to:

  • Ask how your information is used
  • Object to certain uses of your data

Please contact the practice to discuss your preferences.

9. How long we keep your information

We retain your records in accordance with:

Retention periods vary depending on the type of record and are set nationally to ensure appropriate care, legal compliance and patient safety.

This means your information is kept securely and only for as long as necessary.

10. Your rights

Under data protection law, you have the right to:

  • Access your personal information
  • Request correction of inaccurate data
  • Request restriction of processing (in certain circumstances)
  • Object to certain uses of your data

Some rights may be limited where information must be retained for healthcare or legal purposes.

11. Access to your records

You can request access to your records by contacting the practice.

  • Requests are normally free
  • We will respond within one month
  • You may be asked to provide identification
  • We use a processor, iGPR Technologies Limited (“iGPR”), to assist us with responding to report requests relating to your patient data, such as subject access requests that you submit to us (or that someone acting on your behalf submits to us) and report requests that insurers submit to us under the Access to Medical Records Act 1988 in relation to a life insurance policy that you hold or that you are applying for. iGPR manages the reporting process for us by reviewing and responding to requests in accordance with our instructions and all applicable laws, including UK data protection laws. The instructions we issue to iGPR include general instructions on responding to requests and specific instructions on issues that will require further consultation with the GP responsible for your care.

12. Keeping your information up to date

Please inform the practice if your details change (for example, your address or telephone number) so we can keep your records accurate.

13. Complaints

If you have concerns about how your information is used, please contact the practice.

You also have the right to complain to the Information Commissioner’s Office (ICO):

ICO website

Tel: 0303 123 1113

14. Changes to this notice

We may update this privacy notice from time to time. The latest version will always be available on our website.

Accessibility Tools

SurgeryWeb

Privacy Policy | Accessibility | Cookies

Staff Login