We know how important it is for patients and families to be able to see visitors. Please help us keep our patients and staff as safe as possible by checking the guidance below before you visiting.
We recognise the impact that a long stay in hospital can have on families and the importance of maintaining strong communication. Our ward staff are keeping in touch with patients’ next of kin directly and our Voluntary Services team can help pass on personal messages from family and friends.
After suspending visiting earlier in the year, we are now able to offer limited visiting to some wards at the discretion of the nurse in-charge.”
We recognise the impact that a long stay in hospital can have on families and the importance of maintaining strong communication. Our ward staff are keeping in touch with patients’ next of kin directly and our Patient Advice and Liaison Service (PALS) can help pass on personal messages from family and friends.
The Queen Alexandra Hospital is located just on the hill slopes of Portsdown Hill overlooking Portsmouth. It is conveniently situated for both the M27 and A3M.
Family members and carers play an important role in supporting patients during an episode of ill health. We are committed to the active involvement of family members, friends and carers during a hospital stay. Family members and carers play an important role in supporting patients during an episode of ill health.
More information on visiting hospital for an appointment.
If you've had experience of using our services and would like to make a comment then please contact the Patient Advice and Liaison Service (PALS). Your views are very important to us and we would like to hear where you think improvements are needed or where things have gone so well that you would like to share your thanks or gratitude with the staff involved. When things have not gone so well then you can be sure that we want to hear from you, so please get in touch with PALS.
Our Strategy – Working Together, Improving Together
Our strategy sets out our vision, values, strategic aims and most importantly, how we will deliver against these ambitions for our patients, communities, and people in the future.
It is not just a document, it is for and about everyone at PHU, building on what we have achieved with a renewed focus on continuous improvement and the need to continue to work together and improve together to achieve our goals.
A full copy of the strategy can be downloaded here.
For more information, please visit our strategy webpage.
There are lots of opportunities for you to get involved with the Trust, from volunteering to attending our public meetings, our Annual General Meeting or our hospital open day which is held every year.
We welcome and value your feedback and use the views you share with us in a number of ways to learn and make improvements as well as sharing best practice. Feedback can be provided in a number of ways.
Last updated: 27 October 2023
Portsmouth Hospitals University NHS Trust (the Trust) takes your confidentiality and privacy rights very seriously. This notice explains how we collect, process, share and store your personal information and forms part of our accountability and transparency obligations to you under the General Data Protection Regulations (GDPR) 2016 and the Data Protection Act 2018. As the provider of acute health services for Portsmouth and the surrounding area and as a public organisation which processes personal information, we are required to register as a Data Controller with the Information Commissioner’s Office (ICO). The ICO is the regulator for data protection, privacy and electronic communications. Our ICO registration reference number is Z5031878.
When you come into the Trust, information about you, your medical treatment and family background is recorded on paper and computer to help us care for you. This information is known as your health record and we will keep this information in case we need to see you again or if there is a question about the treatment you have received.
To provide you with the highest quality care, the Trust collects information about you, your health and the care given to you or planned to be given to you. This information may include:
Most of your records are stored on paper, however the Trust is moving towards new models of service delivery which include holding your information on electronic computer systems.
Surveillance Camera's (overt and covert) are used for the safety of staff, patients and for the pursuit and investigation of crime.
Your information is vital in helping the Trust to:
Your information is also available should you:
The Trust has a statutory duty under the Health and Social Care Act 2012 to share information about you where it is necessary for the purpose of providing you with direct care. Your personal information will be shared within the Trust among the multi-disciplinary teams that are involved in your direct care:
We will also share your information with your GP on discharge from the Trust, other NHS Trusts when we seek a specialist opinion or when we transfer your care and the ambulance services if you are in need of their transport services.
The Trust and other agencies work together to provide you and your carers with the most appropriate treatment and support. We may also share information with:
On occasion the Trust contracts independent companies to provide services to our patients. These independent companies are required to sign contracts fully outlining their requirements under GDPR and Data Protection. We may need to share your personal information with them in order for you to receive their products or services (hearing aids, prosthetics, podiatry).
Formerly known as the Hampshire Health Record, CHIE is a secure system which shares health and social care information from GP surgeries, hospitals, community, mental health and social services.
Your doctor or nurse may access this information in relation to your attendance at the hospital to provide a complete picture of your health journey. The Trust supplies information to CHIE in the form of your clinical letters and reports of investigations. For more information on CHIE’s compliance with the GDPR/DPA click here. If you do not want your information shared with CHIE, please discuss this with your healthcare professional.
The Care Quality Commission (CQC) is the independent regulator of health and adult social care in England. The CQC ensure that health and social care services provide people with safe, effective, compassionate, high-quality care. The CQC monitor, inspect and regulate services and publish their findings.
The CQC have powers under the Health and Social Care Act 2008 to access, inspect and take copies of any documents or records held by the Trust including your personal and health records to carry out its functions as a regulator. The Trust is sometimes instructed by the CQC to provide personal and health data to the them and this will always be sent to using a secure email or secure file transfer system.
The HSE's purpose is to regulate Health and Safety in line with their statutory duties under the Health and Safety at Work Act 1974, including inspection and investigation activities. Under the legislation we may be asked to provide the HSE with your personal and health information as part of their investigations.
These surveys are part of the government’s commitment to ensure patient feedback is used to inform improvements and development of the NHS. In the public interest we may share your contact information with an NHS approved contractor for the purpose of administering the survey on our behalf.
These government organisations assess the care provided by the Trust and as such we are contractually obliged to share information from your patient record such as referrals, assessments, diagnosis, activity and sometimes the answers you provide to questionnaires.
You have the right to object to the Trust sharing your information with NHS Digital. This will not affect your care in any way. For further information on how to ‘Opt-Out’ of sharing your data with NHS Digital, please click here.
Hampshire and Isle of Wight (HIOW) Integrated Care System (ICS) is a partnership of NHS and local government organisations working together to join up health and care services to improve health and wellbeing of people in the communities we serve. The HIOW integrated Care Board sits within the ICS and is a statutory organisation responsible for setting the strategic plan for the NHS to deliver its part of the health and care strategy. It is responsible for allocating NHS resources. The Trust does not routinely share your personal information such as your health record, with the ICB. However we may share information from a health professional in relation to funding for specific specialised treatment or to investigate a complaint or concern you have raised with the ICB.
The Trust has a very active and nationally recognised research department. The majority of the care you receive in hospital has come about as the result of clinical research. High quality clinical research means the NHS can improve future healthcare for everyone. Your health information can be used for research purposes but only with your consent. All information collected for research purposes will be de-identified before the results are published. For more information about Research at the Trust click here.
All research undertaken at the Trust is governed by the Health Research Authority. To read about how your information is used in research, please click here.
In England if you do not wish for your information to be used for research you can register your choice to ‘opt out’ by clicking here.
You have the right to refuse/withdraw your consent to information sharing with the above services at any time. Please discuss this with your health care professional as this could have implications on how you receive further care, including delays in you receiving care.
Your right to confidentiality is not absolute and there may be times when we must share your personal information with other agencies without your consent. Examples include:
The Trust will process your personal information fairly and lawfully and in a transparent manner by:
The Trust does not rely on consent to use your information as a ‘legal basis for processing’. We rely on criteria listed in Article 6 and 9 of the GDPR. Such as (e) ‘…for the performance of a task carried out in the public interest or in the exercise of official authority…’ and (h) ‘…medical diagnosis, the provision of health or social care or treatment or the management of health or social care systems…’ This means the Trust can use your personal information to provide you with your care without seeking your consent. You do have the right to say ‘NO’ to our use of your information but this could have an impact on our ability to provide you with care.
The Trust will never share your personal information for marketing or insurance purposes.
All staff working for the Trust have a legal duty to keep you information secure and confidential. We do this by having contracts with confidentiality clauses for staff and suppliers, policies and procedures in place which act as guides for staff. Any breach of your personal information is treated seriously and usually involves an investigation with the formulation of an action plan to prevent another breach. Staff who do not follow Trust guidance may face disciplinary action including dismissal.
The Trusts computer systems and networks are protected against virus’, hackers and unauthorised access. The Trust has strict rules about who is given access to specific systems. Any information about you that is sent electronically is sent securely (encrypted). The majority of our electronic systems are able to create an audit trail every time someone accesses your information.
The Trust uses Data Protection Impact Assessments (DPIA) to identify and address any data protection issues that may arise when developing new products or services or undertaking new activities which involve the processing of personal data. The Trust uses Information Sharing Agreements to control the way your information is shared. All personal information that is stored outside the Trust’s IT systems must undergo a IT Due Diligence to ensure that the transfer and storage of your information is safe.
The Trust has appointed a Caldicott Guardian, who is responsible for protecting the confidentiality of patient information and enabling the appropriate sharing of information.
The Trust has also appointed a Data Protection Officer (DPO) who is responsible for facilitating accountability within the organisation and ensuring the Trust is able to demonstrate its compliance with the UK Legislation.
Each year the Trust is required by the Department of Health to complete the Data Security and Protection Toolkit. The Trust’s security and confidentiality compliance are assessed against national standards required by NHS Digital and the Care Quality Commission.
All records held by the NHS are subject to the Records Management Code of Practice 2021. This code sets out best practice guidance on how long we should keep your information before we are required to review it and dispose of it securely. The Trust must also follow UK law and best practice when we dispose of your confidential information when it is no longer needed.
Under GDPR you have the right to access the information we hold about you, both in paper and electronic formats. We may not be able to supply you with some information if:
For more information on how to access your health record, click here.
To get further advice or to report a concern directly to the Information Commissioner’s Office, you can contact them at:
Information Commissioner’s Office
Click HERE for a easy to read privacy notice for our younger patients
Employees of Portsmouth Hospital University NHS Trust can find the Trust’s Employee Privacy Notice by clicking HERE.