Information Governance Practice

A statement on information governance practices at Tallaght University Hospital

Tallaght University Hospital (TUH) is committed to ensuring the privacy and confidentiality of your personal information. This page sets out how the hospital will handle your personal information. If you require additional information, you can read our Data Protection Statement by clicking here.

Legal basis

In processing your personal information, TUH must comply with legislation which includes, but is not limited to, the General Data Protection Regulation (GDPR), the Data Protection Act 2018 and the Freedom of Information Act 2014. We are committed to complying with all applicable privacy laws which govern how TUH collects, uses, discloses and stores your personal information.

What is information governance?

Information governance is the set of standards we must follow in handling personal healthcare records. Good information governance means that all personal health information is handled legally, securely, efficiently and effectively, in order to deliver the best possible care to people who use our services. It also includes, where appropriate, the sharing of relevant personal health information with our healthcare providers.

What does it involve?

Information governance at TUH covers a number of areas and activities. These include the following:

  • We must manage our records efficiently and effectively.
    This means that information should be accurate, up-to-date and accessible when it is needed
  • We must ensure that information is kept securely and is accessed only by those who should be accessing it.
  • We must protect the confidentiality of the information.
    Information provided in confidence should not be used or disclosed in a way that might identify an individual without their consent and/or a legal basis for processing
  • Patients have a right to access health information about themselves.
    For further information on how to do so, please click here and here.

Why do we need information about you?

In order to provide you with the highest quality of healthcare, TUH needs to keep records about you. These records may include the following information:

  • Personal information.
    For example, your name, date of birth, next-of-kin, contact details, etc.
  • Contacts we may have had with you.
    For example, information on clinic visits, hospital admissions, etc.
  • Notes and reports on your health.
    For example, information on treatment and care you need and/or may have received either directly from us or from other care providers such as a primary care team or your own GP
  • Results of medical investigations.
    For example, x-rays, blood tests, etc.

What do we use this information for?

Our staff who provide healthcare to you will use this information in a number of ways. These include, for example, to

  • confirm who you are when we contact you or when you contact us
  • make decisions about your ongoing care and treatment
  • make sure your care is safe and effective
  • check the quality of your care
  • ensure a safe care journey through our hospital and onto other care providers if required

Do I have a choice?

If you want to receive safe and appropriate care and treatment at TUH, we must maintain an accurate record of relevant information about you. If you have concerns, however, about providing information, or how we share this information with our healthcare providers, please discuss this with our staff so you fully understand the impact on your care or treatment.

Do you share information about me with anyone?

In providing care, we may share relevant information about you with other organisations. These include, for example,

  • other hospitals that are involved in your care and treatment
  • your GP
  • community healthcare services
  • local authorities
  • primary care
  • pharmacy

When we do share your information with other organisations involved in your care, we do so under formal agreement about how it will be used, kept confidential and safe. We will not disclose your information to any other third party without your permission unless there are extenuating circumstances (for example, if the health and safety of others is at risk, if there is a legislative requirement for us to pass on information, etc.).

Information may also be used in non-clinical ways. These include, for example, to

  • help manage finances (for example, billing, costings, etc.)
  • teach and train our staff
  • manage and plan our services
  • perform clinical audits
  • help investigate concerns or complaints that you and/or your family may have about your healthcare

Where possible, TUH uses information that would not identify you personally. In this way, it aims to use anonymous information.

Do you use my information for research?

TUH is an academic teaching hospital associated with Trinity College Dublin (TCD). We support and promote research activity throughout our hospital. Most importantly, research plays a vital role in the development of healthcare and the health services we deliver.

Our Research Ethics Committee must approve research before it takes place. If we wish to use your personal information for research, we will ask you for permission first. You will not be identified in any published research or results without your agreement.

Can I see the information you hold about me?

You have the right to access information TUH holds about you. The GDPR, the Data Protection Act 2018 and the Freedom of Information Act 2014 all allow for you to access the information we hold about you.

You may access a copy of your personal healthcare records in either of two ways. These are as follows:

For information on accessing your personal information under data protection legislation, please click here.

For information on accessing your personal information under the Freedom of Information Act 2014, please click here.

Data Protection Officer (DPO)

TUH has a Data Protection Officer (DPO). Should you have any questions about how TUH uses your information, or you are concerned about any issue relating to your personal data, you may contact the DPO in any of the following ways:

By postData Protection Officer
Tallaght University Hospital
Tallaght
Dublin 24
D24 NR07
By emaildpo@tuh.ie