Medicare EMS Group UK Ltd Privacy Policy


Medicare EMS Group UK Ltd [Medicare] is a private medical provider specialising in pre-hospital event medicine.

Medicare deals directly with clients and does not deal with 3rd party providers.

Medicare strives to comply with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018 (DPA).

This policy explains how we use the personal data. We want to help you understand how we work with your data, so that you can make informed choices and be in control of your information.

This policy explains how we use your personal data for our healthcare services provided at the events we cover.

This policy covers:

If you have any further questions about how we process your information, or you would like to make a data access request, please don't hesitate to get in touch by contacting our Clinical Governance Team:

Address: 4 Suffolk Drive, Dukes Park Industrial Estate, Chelmsford, Essex, CM2 6UN


How we collect personal data:

Personal details

When you receive treatment and/ore care by a member of our staff you will be asked to provide basic information about yourself including:

Health and medical information

In addition to the above the clinician treating you will ask if you have any medical conditions and/or any medications (both prescription and over the counter) that you take on a regular basis. This is to ensure that the clinician is well informed of any conditions that may impact their assessment of you and ensure that the treatment provided is in line with best practice.

This information can only be provided by yourself (parent/guardian), we do not access the NHS spine at any point.

What we use your personal data for

The purposes for which we use your personal data and the legal grounds on which we do so are as follows:

Sharing your personal data with others

Except as described above, we will never share your personal information with any other party without your consent.

Retention periods

We retain your medical records in accordance with national best practice guidance - in particular, advice provided by the Department of Health (2006) Records management: NHS code of practice, and summary guidance issued by the British Medical Association. The below is a summary of our retention procedure:

Type of record Retention period
Patient Report Forms Patient report forms retained for 10 years after death or after the patient has permanently left the country unless the patient remains in the European Union.
Clinical audit records 5 years – anonymised

Data storage, security and transfers

We store all your personal health data on secure servers. We do not email your personal date to anyone including other members of our company. In the event that a third party requires your information for litigation purposed for example, the information will be sent via an encrypted email service or approved courier service.

Once the paper version of your record has been received by Medicare’s head office, we use strict procedures and security features to prevent unauthorised access. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy.

Your rights

You have specific rights under the GDPR and DPA to:

You may also contact the Information Commissioners Office (the data protection regulator in the UK):

Information Commissioner's Office
Wycliffe House
Water Lane
Telephone: 0303 123 1113 (local rate).