What must I do to process personal data securely? #GDPR

To process personal data securely you must consider:

a) Pseudonymisation and encryption of personal data (for some time it has been necessary to encrypt personal data held on lap tops and memory sticks – but you may wish to speak to your PMR supplier about further measures);

b) Be able to ensure the confidentiality, integrity, availability and resilience of the processing systems and services;

c) Able to restore the personal data in a timely manner in the event of physical or technical problems; and,

d) Have a system for regularly testing, assessing and evaluating the effectiveness of the security, technical and organizational; recognizing the risks involved in processing the personal data, including the risk of unauthorized disclosure. 

Any natural person processing personal data – for the data controller or the processor – does so under instructions from the data controller; the pharmacy.

View our GDPR page for more information