We are committed to protecting and respecting your privacy. The following Privacy Statement applies to the Southern Health NHS Foundation Trust Parent Portal in its entirety, and sets out how your personal data is handled by us. We strongly recommend that you take some time to read this policy carefully to understand how we treat your personal data.
What information do we collect?
Information you provide
We collect information directly from you in a number of ways. You have a choice about the data we collect. When you are asked to provide data, you may decline. However, some information will need to be provided in order to have a Southern Health Parent Portal account. This will include your email and password.
Data may be collected when you enter information as part of your child’s Southern Health Parent Portal Personal Record. When this data is collected, we will notify you as to why we are asking you for this information, and how this information will be used. It is completely up to you whether or not you provide it, and if you do not feel comfortable providing this information, you are under no obligation to do so. The Southern Health Parent Portal uses a temporary session cookie to reference the active server session. The cookie is in-memory only and is not active after the browser session is closed.
Networks and Devices
When you access The Southern Health Parent Portal, we use technology to collect information indirectly, such as your internet address (IP Address), which is then kept in our internet logs. This is collected for aggregate information purposes and represents statistical data about our users’ browsing actions and patterns. This data does not identify any individual in any way and is anonymised.
How do we use this information?
Communication with you
We use your information to send you communications about our service or to let you know about any changes to our terms of service or privacy statement. We also use your information to respond to you if you contact us.
We use the information you have provided to verify your account and to promote safety and security by investigating suspicious activity or violations to our terms of service.
Improvement and development
From time to time we may conduct surveys to better understand how to improve features.
How is your information shared?
Mindwave Ventures Limited and Southern Health will not share your data with other organisations without your consent, unless the law permits us to do so. We share data only with our authorised Data Processors, who must act at all times on our instructions as the Data Controller under the UK Data Protection Act 2018. Before you submit any information, it will be made clear to you why we are asking for specific information, and it is up to you whether you provide it. Mindwave Venutres Limited and Southern Health do not and will never sell any data.
Is your information safe?
The information transmitted between the Southern Health Parent Portal (powered by Mindwave Ventures Limited) and OpenRio (Southern Health’s electronic patient record system) is a secure data flow. All of the Information Systems used by Southern Health are implemented with robust information security safeguards to protect the confidentiality, integrity and availability of your personal information. The security controls adopted by the Trust are influenced by a number of sources including the 10 National Data Guardian Standards and guidelines produced by NHS England and other Government standards.
How do we respond to legal requests?
We may have to share your information if there is a legal basis in which to do so (like a court order).
How will we notify you of changes to this policy?
We will notify you when we make any changes to this policy and invite you to review and consent before continuing to use the service.
Southern Health takes yours, and your carer's child’s confidentiality and privacy rights very seriously. Our Privacy Notice explains how we collect, process, transfer and store your personal information and forms part of our accountability and transparency to you under the UK General Data Protection Regulation (GDPR) 2018.
Please note that if you access our service using your NHS login details, the identity verification services are managed by NHS England. NHS England is the controller for any personal information you provided to NHS England to get an NHS login account and verify your identity, and uses that personal information solely for that single purpose. For this personal information, our role is a “processor” only and we must act under the instructions provided by NHS England (as the “controller”) when verifying your identity. To see NHS England's Privacy Notice and Terms and Conditions, please click here. This restriction does not apply to the personal information you provide to us separately.
To review our Privacy Notice in full please visit:
How to contact us with questions or concerns
If you have any additional questions regarding this policy, please feel free to contact us at:
Data Protection Lead at Mindwave Ventures Limited: Katy Edwards
Mindwave Ventures Limited
4a Whitehorse Mews
37 Westminster Bridge Road
Data Protection Officer at Southern Health NHS Foundation Trust:
Data Protection Officer
Southern Health NHS Foundation Trust
7 Sterne Road
Southampton SO40 2RZ