Modern information and communication technologies play a fundamental role in the activities of an organisation like Care Information Scotland (CIS), which operates at an international level. We are based in Scotland UK. Our principal activity is to provide public focused information about the CIS service. Protecting your privacy and your personal data is an important aspect of the way we create, organise and implement our activities online and offline.

Our privacy policy covers www.careinfoscotland.scot

NHS 24
Caledonia House
Cardonald Park
Glasgow G51 4EB

Privacy support

If you have an enquiry about our privacy policy, please contact us via email:

CareInformationScotland@nhs24.scot.nhs.uk

Privacy compliance

Our privacy policy is compliant with the relevant data protection legislation.

We are committed to compliance procedures that attest that our privacy policy respects the above privacy instruments: Purpose, specification and data collection.

You can access our website home page and browse our site www.careinfoscotland.scot without disclosing personal data. We collect your personal data only with your knowledge or your consent. We collect the personal data that you volunteer on registration, order, survey, competition, or other forms, or by email.

The webchat function is hosted in the US. Data is stored securely whilst held and deleted in line with the retention period as detailed in the relevant retention and destruction schedule.

Disclosure

We do not disclose your personal information to any third party. We ensure that your personal information will not be disclosed to state institutions and authorities except if required by law or other regulation.

Individual participation/access

You can ask us whether we are keeping personal data about you, and upon request, we can provide you with a readable copy of any personal data which we keep about you. We allow you to change the data that we hold about you, by erasure, rectification, completion or amendment.

Security

We have implemented technology and security policies, rules and measures, based on the 'Privacy Principles of the OECD Guidelines' to protect the personal data that we have under our control from: unauthorised access, improper use, alteration, unlawful or accidental destruction and accidental loss.