Learn more about your legal obligations as a care provider under The General Data Protection Regulation (GDPR), particularly how you manage personal and sensitive data.
It is a requirement of the Data Protection Act (2018) and the General Data Protection Regulation (GDPR) that all personal and sensitive data has a legal basis for being held and being shared.
This means as a care provider, you are legally obliged to keep a record of all the personal data you hold for staff, residents and families/carers, and what data they share with others.