Data Protection FAQs

Processing personal data includes collecting, storing, accessing, changing and destroying any information about you. The amount of personal data we have about you and how we process it depends on how you were involved with the services that Northern Ireland Ambulance Service operate.

Occasionally we take photographs of people using our services, for promotional leaflets or other publicity purposes. If you can be identified from this type of photograph we will explain why we want it and ask for your consent beforehand.

We may use the information you give us when you use our Service for research or statistical purposes and to help us plan for the future, but we will not include any personal data in our reports and plans.

Employees of the Northern Ireland Ambulance Service can access and process your personal data for their official duties, but only the data needed for a specific purpose. They must not disclose your personal data to anyone else without your knowledge, unless they are legally obliged to do so.

In order to provide immediate care and treatment, some or all of these people will need/access your details:

• The Ambulance Control Officer and the Ambulance Crew who attend you;
• If you are in a road traffic collision or similar incident, the Northern Ireland Fire and Rescue Service or PSNI may need the details to assist you
• Acopy of your PRF and possibly verbal details will be given to the accident and emergency staff when you arrive at hospital

If you make a complaint about our service to you or complain directly to a third party organisation, your personal data may be shared with other statutory bodies concerned eg hospitals, Police Ombudsman, PSNI. Administration and Support Staff process complaints, claims or respond to requests for personal information.

The Data Protection Act gives you a general right of access to personal data that relates to you. Access requests must be made in writing; with enough information to locate the data requested and proof that you are the data subject.

You can request access to your personal data using our subject access form. This form is designed to help you give us the information we need to find your personal data. You may have to pay a fee of up to £10 but we will confirm that when we receive your data subject access request.

We have 40 days from receiving the access application to get back to the applicant and tell them whether we are holding information about them. If we are, we must:

• Give a description of the personal data;
• Why the data is held;
• Who else the data might have been given to;
• A copy of the data;
• An explanation of any technical terms or abbreviations;
• Any information about the original source of the data.

We can withhold some data if it refers to other people who have not consented to disclosure, if disclosure might cause serious harm to you or anyone else or might prejudice crime prevention or court proceedings. Even if we cannot provide you with copies of the data, we will confirm what type of data we hold and why we hold it.

You only have the right to access your own personal data. You do not have the right to access personal data about other members of your family, your friends or your neighbours’ unless;

• You have written proof of your authority to act on behalf of someone else;
• Parents may request information about a child under 16, but there is no automatic right to the data;
• A solicitor may request information on behalf of a client.

Even if you meet these requirements we may need to ask you for more information before we reply or refuse access because of our duty to keep personal data confidential.

Obtaining personal data from Northern Ireland Ambulance Service employees for an unauthorised purpose or unauthorised disclosure to a third party are offences under the Act.

NIAS has a duty of confidence to all its patients but in addition to this, you have the protection of the Human Rights Act, Article 8-“Everyone has the right to respect for his private and family life, his home and his correspondance”.Your information is also protected by the Data Proteciton Act 1998, which lays down strict rules about the handling and collection of personal data.