Student Fitness to Practice Privacy Notice

This Privacy Notice applies to the processing and sharing of personal data/information belonging to a student concerning any incident of alleged misconduct occurring during clinical placement. Data processing and sharing will be limited to the Faculty of Medicine, Health and Social Care (the Faculty), the placement area and external personnel who attend a stage 4 Fitness to Practice Panel.

What personal information do we collect about you?

As part of the SFTP investigation process, the following information will be collected about you.

• Information about the incident in which you have been involved and that has led to the need to undertake a SFTP investigation
• Your name, your student ID, your university email address and details related to your course
• Data related to your health if applicable to the incident in which you have been involved
• Personal data related to our racial or ethnic origin if applicable to the incident in which you have been involved
• Details of any previous fitness to practice issues, disciplinary or grievance proceedings that you have been involved in
• Assessments of your performance, improvement plans and related correspondence both within the University and within your placement areas

How do we collect your information?

We will collect data about your participation in learning via your practice assessment documentation and from correspondence between you and the academic team.

We will collect data related to and leading to the need to instigate the SFTP process..

We will collect information related to the incident leading to the SFTP process from your practice placement facilitators, including from the lead for practice placement, your placement educators, practice supervisors and practice assessors and other clinical staff who may have worked alongside you.

We will collect information about you from service users you have cared for or been involved with where it is relevant to the allegations.

The reason and purpose for collecting this data

Collecting this data ensures a full and fair investigation into the issues that have led to the need to instigate the Fitness to Practise process.

Information collated will determine if there has been a breach or impairment related to the Student of Conduct as laid out in the University’s Student Conduct Procedure or the standards set by the relevant PSRB.

Who do we share this data with, how long will it be kept, and where will it be stored?

The University is committed to the data protection principles of good practice for handling information. We will only transfer data between placement partners, employers (in the case of post registration learners and apprentices) and Faculty staff on a ‘need-to-know’ basis in relation to the allegation under investigation. In the case of post registration learners and apprentices’ information related to the allegations will be shared with employers for safeguarding purposes and protection of the public.

The Quality and Compliance team will process data. It will be saved securely with the Quality and Compliance SharePoint and within the Strategic Information Technology System (SITS), the student record keeping system used at the University

Following completion of the Fitness to Practice process all data related to this will be kept securely within Quality and Compliance the Quality and Compliance SharePoint and Strategic Information Technology System (SITS), student record keeping system used at the University for the duration of your course.

In cases where allegations have been proven and the sanctions require removal from the course/dismal from the University data will be kept for six year after completion of the proceedings.

The legal bases we use to process your data

Legal Obligations

Processing under this lawful basis applies to the need to meet the requirements of PSRB responsible for the accreditation of your professional programme, which are based on statutory responsibilities, it is also necessary for us to meet our common law obligations to the safeguarding of service users.

Public Task

Processing under this lawful basis applies to meeting the statutory requirements of relevant PSRBs to protect the interests of client groups as a public task.

The Data Controller and further information

Canterbury Christ Church University is the Data Controller for this personal data.

Please click the link below to access further information regarding:

• The Data Controller
• The name and contact details of the University Data Protection Officer
• Where to make a complaint
• Your rights as a Data Subject
• How to contact the Regulator