At the Royal College of Physicians (RCP) we are committed to safeguarding and preserving the privacy of our audiences, members and visitors. This privacy statement explains what happens to any personal data that you provide to us, or that we collect from you.
Our privacy statement takes into account several legal instruments, including:
Our privacy statement also takes into account internal staff policies, including:
We may collect and process the following data about you:
All personal information held by the Royal College of Physicians of London (RCP) will be held in accordance with the General Data Protection Regulation 2016 and the UK Data Protection Act 2018.
The RCP collects data during membership application and registration; through subscription to activities, resources, services, and training; and through partnership activities, resources, services and training.
The RCP maintains information about members and other service users in order to provide membership benefits, educational products, and research services. Information is also retained for monitoring training, research and statistical analysis, in data comparisons to verify qualifications and to prevent fraudulent activity.
The RCP uses information about members and other service users for fundraising, including fundraising research, to further advance the mission of the RCP.
The RCP commits to using your information in accordance with your mailing preferences. Please contact firstname.lastname@example.org or log in to your MyRCP account on the website to amend your profile.
The RCP shares information across internal departments to improve our communications and services; and with appropriate third parties* in order to improve clinical practice, medical training and our services. The RCP will not sell information about members and other service users to third parties.
*Non-exclusive list: Department of Health; education, CPD and training programmes in higher education and the NHS; examination centres; Federation of Royal Medical Colleges [Academy of Physicians Colleges]; General Medical Council; postgraduate deaneries and overseas equivalents.
The RCP discloses personal details to appropriate suppliers, in order for members and other service users to take advantage of any discounts on products and services offered by the RCP’s partners.
All data sharing outside the EU is covered by full written agreements which include GDPR requirements.
The RCP collects and holds data on members and other service users in a range of systems, each with their own retention requirements. Further information is available in the full processing statements for individual systems, as below.
The RCP collects and holds data on members and other service users in a range of systems, each with their own data sources. Further information is available in the full processing statements for individual systems and will be provided in response to individual requests, as required.
You have the right to access all information which identifies you as a living person, held on RCP systems. You have the right to a copy of your data in a standard format, where technically possible. You also have the right to rectify factual errors in current RCP systems and processes. The above rights apply across all work areas in the RCP. If you wish to exercise these rights, contact the data protection officer: email@example.com.
The right to restrict processing, stop your data being processed or have your data deleted will vary across RCP work areas, depending on the circumstances. Further information is available in the full processing statements for individual systems and will be provided in response to individual requests, as required.
The RCP does not use automated decision making in managing either membership or service activities.
The RCP works with a range of partners to deliver membership activities, educational services and research programmes. Further information is available in the full processing statements for individual systems and will be provided in response to individual requests, as required.
If you wish to know more about how we manage privacy at the RCP, or you wish to make a complaint, contact the data protection officer: firstname.lastname@example.org.
The UK regulator for privacy law is the Information Commissioner's Office (ICO). See their website for further information on your rights.
If the use of your data changes, we will place an updated version on this page. Regularly reviewing this information ensures you are always aware of what data we collect, how we use it and under what circumstances, we will share it with other parties.
RCP clinical programmes and audits:
RCP library, archive and museum:
Further information can be provided in response to individual requests, as required.
No data transmission over the internet can be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, the RCP cannot ensure or warrant the security of any information you transmit to us, and you do so at your own risk. Once we receive your transmission, we make our best effort to try to ensure its security both on our systems and while in transit between our systems and the companies who provide us with various services.
You can adjust your device's settings to decline, disable and delete cookies if you wish. For more information please read the advice at AboutCookies.org.
Our server records your visit for demographic reasons and to help us understand how you use the site. We use the information we collect to improve the site and provide better services. The information we collect is treated in accordance with the data protection principles outlined in the Data Protection Act 1998.
This statement was last updated March 2019.