GP Connect helps clinicians gain access to GP patient records during interactions away from a patient’s registered practice and makes their medical information available to appropriate health and social care professionals when and where they need it, to support the patient’s direct care.
From a privacy, confidentiality and data protection perspective, GP Connect provides a method of secure information transfer and reduces the need to use less secure or less efficient methods of transferring information, such as email or telephone.
GP Connect – key points
- GP Connect can only be used for direct care purposes.
- Individuals can opt out of their GP patient record being shared via GP Connect by contacting their GP practice.
- Access to GP Connect is governed by role-based access control (RBAC) and organisational controls; only people who need to see the GP patient record for a patient’s direct care should be able to see it.
- All organisations using GP Connect must comply with the National Data Sharing Arrangement (NDSA) and end-user agreement that sets out their responsibilities and obligations.
- All individuals who have access to the GP patient record using GP Connect must agree to terms and conditions of use.
- All systems that allow the use of GP Connect must undergo a robust compliance process and the organisations involved must sign a connection agreement holding them to high standards of information security.
https://digital.nhs.uk/services/gp-connect/gp-connect-in-your-organisation/transparency-notice