GDPR & Data Privacy Policy

At CareSync, we are committed to protecting the privacy and security of the personal and health-related data we process. We operate in full compliance with the UK GDPR and the Data Protection Act 2018.

1. Data Collection

We collect information necessary for the provision of care, including resident details, accident reports, and behavioral logs. This data is strictly used for the safety, health, and management of care services.

2. Data Security

We implement robust security measures to protect your data, including:

• Encryption: Sensitive information is handled using secure server protocols.
• Access Control: Data access is restricted to authorized personnel based on their assigned roles.
• Audit Trails: Every log entry is time-stamped and linked to the specific staff member for accountability.

3. Data Retention

Data is retained only for as long as necessary to meet our legal, regulatory, and operational obligations. Incident records are securely archived in line with statutory care requirements.

4. Your Rights

Under GDPR, you have the right to request access to the personal data we hold, request corrections, or, in certain circumstances, request the deletion of your data. Please contact your company administrator to exercise these rights.