Privacy and cookies policy
The Falls Assistant (https://fallsassistant.org.uk/) is owned and operated by NHS 24.
NHS 24 are committed to ensuring privacy is protected and that users can be assured that any data will only be used in accordance with the privacy requirements outlined in this policy.
This policy outlines:
- what data we collect about you when you access this website
- how we collect this data
- how we store this data securely
- who we share it with
- how you can access it
Compliance
This policy is compliant with the Data Protection Act 1998 (DPA), and we’re committed to compliance procedures that demonstrate this.
The types of data we collect will depend on how you access and use this website.
NHS inform deals with personal and sensitive data, as classified under the Data Protection Act 1998 (DPA).
Browsing
When you use this website, we’ll collect information about your browsing habits using cookies. This helps us to understand how you interact with the website and what information you’re interested in.
By using our website and agreeing to this policy, you consent to for us to use cookies to collect this information in accordance with the terms of this policy.
What’s a cookie?
A cookie is a small amount of data placed on your computer or mobile phone by a website.
Cookies can be:
- persistent – meaning they’re stored by your web browser and will remain valid until a set expiry date
- session – meaning they’ll expire when your web browser is closed.
Our cookies
We use the following persistent cookies on this website:
| Cookie name | Expiration time | Description |
| _ga | 2 years | Used to distinguish users |
| _gat | 10 minutes | Used to throttle request rate |
These are first-party cookies used by Google’s Universal Analytics.
What we collect
When you visit this site, we’ll collect information about:
- your computer
- your visits
- how you use this website.
Our cookies don’t collect or store any information that personally identifies you.
Blocking or deleting cookies
Blocking or deleting cookies may have a negative impact on how you use this website and could prevent some of the features from working.
Find out how to delete cookies
Any data we collect is stored securely in an NHS Scotland database. This database has been formally risk assessed and accredited in accordance with the Data Protection Act 1998 (DPA). No third parties will have access to it.
This data will be kept no longer than is necessary and reasonable to do so. After this period, the data will be deleted.
Loss and misuse of data
We take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal data.
Data protection and security
For the purposes of the DPA, NHS 24 are data controllers for personal data collected, stored and shared by NHS inform.
Data security
As NHS inform is delivered through NHS Scotland, we adhere to all data security standards and protocols that apply to the NHS in Scotland.
In addition, all systems that operate as part of NHS inform have had a detailed system security policy assessment in line with national recommended standards. The outcomes of this assessment were accredited by the Scottish Government eHealth team.
Disclosure checks
At NHS 24, all health professionals who handle personal data undergo Disclosure Scotland checks prior to employment.
Sharing your data
Any data we collect will only be shared for the purpose of:
- investigating and responding to enquiries
- monitoring the performance of the service
You’ve a right to know what data we collect about you, and to:
- access or modify it
- request that we delete this data at any time
You can request this by contacting our digital team.
How to contact us
This website is maintained by NHS 24.
If you’ve a question or comment about our privacy policy, or would like access to your personal information, contact our content team.