EMIS Group and General Data Protection Regulation (GDPR)

21 May 2018

As a business we take issues of information governance (IG) very seriously. We have in place an established Information Governance Board looking at IG issues across the Group, including the forthcoming changes to data privacy law arising through the introduction of the GDPR.

For more information on GDPR please see: https://ec.europa.eu/info/law/law-topic/data-protection_en) to be implemented by the Data Protection Act 2018 (see: https://services.parliament.uk/bills/2017-19/dataprotection.html).

Each member of EMIS Group is committed to:

  • ensuring the security and protection of the personal information that it processes, and to providing a compliant and consistent approach to data protection; and
  • complying with the requirements of the GDPR.

EMIS Group has focused on issues relating to information governance and data privacy over many years. It forms a key part of our business culture.

We have implemented a compliance strategy in line with current guidance and as part of our preparations we have (amongst other things):

  • undertaken IG training in relation to all of our staff (which is something we have done on an annual basis for many years)
  • issued undertakings to be signed by all employees which reaffirms their commitment to information governance and maintaining confidentiality
  • expanded our existing established data privacy impact assessment process, which looks at new (and updated) products and services across the Group from an IG perspective
  • revised and updated privacy notices and policies across the Group
  • appointed a data protection officer, who may be contacted via privacy@emishealth.com.

If you would like to discuss any matters relating to information governance or data privacy and our approach then please do not hesitate to contact us.

Please note that this statement is provided for information purposes only and does not constitute a specific warranty or representation.