Our Privacy Policy
Our Health Hub is committed to protecting and respecting your privacy. This policy explains when and why we collect personal information, how we use it, the conditions under which we may disclose it to others and how we keep it secure.
Working With Local NHS Organisations
We work with local NHS organisations, including Hospital Trusts, Sussex Partnership NHS Foundation Trust (SPFT), Sussex Community NHS Foundation Trust (SCFT), and approved community partners to provide specialist clinics in the community. To do this safely, we use limited information from your GP record to identify eligible patients, invite you to attend, and ensure clinicians can update your record after your appointment. Only staff involved in your care can access this information, all data stays within secure NHS systems, and any information shared with non‑NHS support services is only done with your agreement. Taking part is optional, and if you prefer not to be included you can tell your GP practice or the PCN team. For any questions about how your information is used, please contact the Health Hub team at sxicb-bh.brightonhealthhub@nhs.net
Our Commitment to Data Privacy
We are committed to protecting your privacy and will only process personal confidential data in accordance with the General Data Protection Act (GDPR).
Our Health Hub uses the Data Controller under the terms of the General Data Protection Act. We are therefore legally responsible for ensuring that all personal information that we process i.e. hold, obtain, record, use or share about you, is done in compliance with GDPR.
Everyone working for our Health Hub has a legal duty to keep information about you confidential. All of our staff receive appropriate training to ensure they are aware of their personal responsibilities and have contractual obligations to uphold confidentiality, enforceable through disciplinary procedures.
Information we hold about you
Throughout your interactions with us we will only collect the data that we require in order to provide you with the service that you are requesting.
Information you give us
We use the information you give us to:
send you the publications, newsletters and updates that you have subscribed to
provide you with the services and the information about our activities and events that you have requested
administer any user accounts we set up for you
conduct surveys and process your response to any survey you participate in for research, evaluation and statistical purposes
analyse and improve the activities and content offered by our Health Hub website to provide you with the most user-friendly navigation experience.
otherwise communicate with you regarding our aims and activities
ensure we do not send unwanted information to those who have informed us they do not wish to be contacted
keep a record of your relationship with us
keep your data up to date
use IP addresses to identify the location of users, to block disruptive use
Information we collect about you through our website
We may automatically collect the following information about your visit. This information will not identify you, it relates to:
‘Analytics Software’ collects technical information, including your browser type and version, time zone setting, operating system and platform and the pages you visit.
‘Cookies’ are stored whilst you are using this site. We use cookies to recognise your computer when you visit our website to improve the website’s usability. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org.
Use of cookies on our website
A cookie is a small file containing a string of characters that is sent to your computer when you visit a website. When you visit the site again, the cookie allows that site to recognise your browser. Cookies may store user preferences and other information.
Cookies provide a convenience feature to save you time, or tell the Web server that you have returned to a specific page. For example, if you personalise pages on our Website, or register for a Subscription Service, a cookie helps us to recall your specific information on subsequent visits. When you return to the same Website, the information you previously provided can be retrieved, so you can easily use the customised features.
Cookies set by the website owner (in this case, our Health Hub) are called "first party cookies". Cookies set by parties other than the website owner are called "third party cookies". Third party cookies enable third party features or functionality to be provided on or through the website (e.g. interactive content and analytics). The parties that set these third party cookies can recognise your computer both when it visits the website in question and also when it visits certain other websites.
You have the right to decide whether to accept or reject cookies. You can exercise your cookie preferences by clicking on the appropriate opt-out links. You can set or amend your web browser controls to accept or refuse cookies. If you choose to reject cookies, you may still use our website though your access to some functionality and areas of our website may be restricted. As the means by which you can refuse cookies through your web browser controls vary from browser-to-browser, you should visit your browser's help menu for more information.
The specific types of first and third party cookies served through our Websites and the purposes they perform include:
• Necessary cookies. Necessary cookies are required to enable core site functionality and to remember user preferences and choices, such as language preferences or customised settings.
• Performance and Analytics cookies. Performance and Analytics cookies provide quantitative measures of website visitors. With the usage of these cookies we are able to count visits and traffic sources to improve the performance of our site.
• Advertising cookies. Advertising cookies are used by advertising companies to serve ads that are relevant to your interests.
You can change your consent to cookie usage using the Cookies Settings button at the bottom of the website. Click on Show Details for a detailed breakdown of all cookies used.
How your information is used
Personal information will only be used for the purpose of which it was originally given by the individual.
Your information will never be used for marketing, research or profiling without your explicit consent.
Your Rights
You have certain legal rights, including a right to have your information processed fairly and lawfully and a right to access any personal confidential data we hold about you.
Right to be informed
You have the right to be informed about the collection and use of your data.
You also have the right to be notified of a data security breach concerning your personal data if it results in physical, material or non-material damage to you such as loss of control over your personal data, discrimination, identity theft or fraud, financial loss or loss of confidentiality of personal data.
Right of access
You have the right to access any of your personal data that is being processed together with supplementary information. If we do hold information about you we will:
Give you a description of it;
Tell you why we are holding it;
Tell you who it could be disclosed to; and
Let you have a copy of the information in a plain readable format.
There are no fees for making a request. However, if your request is manifestly unfounded or excessive we may charge a reasonable administrative fee or refuse to respond to your request.
Right to be forgotten
You have the right to have your personal data erased. This right is not guaranteed and applies only in certain circumstances.
Right to restrict
You have the right to request the restriction of your personal data from being processed. This will restrict any ongoing processing but not erase any data we hold.
Right to rectification
You have the right to have inaccurate personal data rectified or completed if it is incomplete.
Right to object
You have the right to object to data processing of the information we hold about you, where we are relying on a legitimate interest to do so and you think that your rights and interests outweigh our own and you wish us to stop.
Rights in relation to automated decision making and profiling
We do not make any automated decisions or profiling with your personal data.
How to make a request
Requests must be made in writing to our Health Hub. Alternatively you can email us.
The information we will require when you make a request is your name, email address, contact telephone number, name or your practice or company and a description of the request.
We will respond within a reasonable period and no later than one calendar month.
Third Parties
We use a range of third-party data processors to assist us in connection with the services that we provide.
These organisations are subject to the same legal rules and conditions for keeping personal confidential data secure and are underpinned by a contract with us.
Technical service providers - We may share your details with providers we use to provide computing services.
Email software - We may share your details with e-mail software providers to allow us to send email newsletters to you.
We do not sell your personal information to any third parties for any purposes.
Processing outside the UK
Third parties we may use may be situated outside the UK.
We will ensure that these companies are committed to ensuring such transfers are compliant with applicable data transfer laws, including GDPR.
Data Retention
We will retain the information we hold about you for up to 12 months, unless further action is required or a longer period of retention is required to comply with our legal obligations. We regularly review and securely delete data that is no longer required.
Data Backups
Backup data is encrypted and stored off site.
Updates
We may update this notice from time to time. Please check back regularly for any changes.
Last updated: 04.02.2026