Your data security with Compound
Our commitment to privacy
At Compound, we understand the sensitive nature of your medical information. We employ industry-leading security measures to ensure your data is protected at all times.
How we secure your information
- Encryption: All personal and medical data is encrypted both in transit and at rest
- Secure infrastructure: Our systems use state-of-the-art security infrastructure with regular monitoring
- Access controls: Only authorised healthcare professionals directly involved in your care can access your medical records
- Regular security audits: We conduct comprehensive security assessments and penetration testing
- Compliance: We adhere to all UK data protection regulations, including GDPR and NHS data security standards
Your medical records
- We are required by British Medical Association (BMA) guidelines and UK law to securely store electronic patient records for the foreseeable future
- Even if you request deletion of your data, your medical records must be retained to meet legal requirements and support patient safety
- Non-medical personal data can be deleted upon request
Staff training and policies
- All Compound staff undergo regular training on data protection
- Strict confidentiality policies are enforced
- Background checks are conducted for all employees with access to patient data
Your rights
- You have the right to access your personal data
- You can request copies of your medical records
- You can ask for corrections to inaccurate information
For more information about how we handle your data, please review our Privacy Notice.