UKCTG Privacy Policy


The purpose of this privacy notice is to inform you, as a user of UKCTG, about what information we collect when you visit the service, how we use the information, whether the information is disclosed and the ways in which we protect users' privacy. At all times, we want you to feel secure when using the website and associated services. We are committed to respecting your privacy and how we do that is outlined in this Privacy Notice below. Below we give an overview of how we do that. The Department of Health is the Data Controller for UKCTG under the Data Protection Act 1998. We will process your data in accordance with the Data Protection Act.

How do we use your information

We analyse information to see what is most effective about our website and associated services to help us identify ways to improve it and to make it more effective.

What information do we collect when you use UKCTG?

We collect information directly and indirectly. When you use UKCTG, we use technology to collect information indirectly - such as your internet address. This is commonplace across all internet services to enable the investigation of issues such as malicious use. This information is then kept in our internet access logs. We collect information directly from you in a number of ways. One way is by using cookies. Cookies are small files of information that save and retrieve information about your visit to our site, such as how you entered our site, how you navigated through the site and what information was of interest to you. This information is collected for a number of reasons, for example, to help develop the website and associated services. The cookies we use identify you merely as a number. If you are uncomfortable about the use of cookies, you can disable them by changing the settings in the preferences or options menu in your internet browser. However, disabling cookies may affect our ability to provide services to you; if certain cookies are disabled you may not be able to access the service.

See our separate Cookies statement for more information on the cookies we use.

Personal data collected

The only data stored on UKCGT will be cookie ID, IP address or device identifier information that the system collects when you access the system.  Your data will be stored on the ‘UKCTG ’ website, more specifically:

  • Navigation data – how you move around our site and hyperlinks you click upon

  • address and the website you came from

  • It is anticipated that this information will be kept for twelve months for statistical purposes only

Use of personal data

  • Analytics – Uses navigation data in services provided by the UKCTG platform

  • Personalisation – Uses navigation data and personal information to enable us, and third parties, to tailor the services provided to you

Data sharing

  • We will never share personal information with any third parties without your consent

  • Navigation data is shared with trusted third parties providing analytics

  • All third party contractors are required to sign up to an Agreement, which prevents them from sharing your data with other non-authorised third parties and provides for the secure disposal of this data.

Links to other websites

Due to the nature and function of the UKCTG we have to link to other websites to obtain the data presented. The sites that UKCTG links to are third-party sites and UKCTG does not control the way these sites use your information. If you choose to access these sites using the links provided, the operators of these sites may collect information from you that may be used by them in accordance with their privacy policies, but please be aware, these policies may differ from ours. You should read their privacy policies carefully to find out what happens to any information that is collected by these services when you use them.

How long do we hold this information?

We will hold the information for as long as we are providing you services and for as long as you agree to this.

Will we disclose your information or share it with other organisations?

As a public service, we do not share data with other organisations unless the law permits us to do so. We do not sell an individuals’ information. We will share it only with our authorised Data Processors, who must act at all times on the instructions of the Data Controller under the Data Protection Act 1998.

Your data is kept under secure conditions

We will take appropriate steps to maintain the security of your data on our service. The open nature of the internet means that data may flow over networks without security measures and may be accessed and used by people other than those for whom the data is intended. Our intention is that this should not happen and we will take appropriate measures to ensure that it does not.

UKCTG is hosted on the Amazon Web Services Platform, a cloud-based software platform which provides for disaster recovery processes across its servers, which are all located within the United Kingdom. None of the data contained within UKCTG will go outside the United Kingdom. The Amazon Web Services platform is accredited to ISO 27001 security standards.

Destruction of data

  • When a disc drive fails or is no longer required for use, this is securely destroyed in accordance with the NHS Code of Practice.

  • When an electronic file containing personal identifiable information (i.e. a complaints file) is no longer required it is securely deleted by overwriting the space several times with selected patterns, thus rendering any information unreadable.

  • No paper records are kept for the purpose of collecting personal confidential data

You can request access to your personal information

You are entitled to know whether we hold any information about you and, if we do, to have access to that information and request that it be corrected if it is inaccurate. Any such requests must be made in writing to or by using the ‘Contact Us’ page’.

Complaints or queries

UKCTG seeks to meet the highest standards when collecting and processing personal information. For this reason, we take any complaints made about this very seriously and we encourage people to feedback and tell us when they feel that our collection and/or use of personal information is unfair, misleading or inappropriate. Any complaint and/or query must be made in writing to or by using the ‘Contact Us’ page’.