The Healthy Working Lives programme is delivered by
NHS Health Scotland, a national NHS Board, in collaboration with Scotland’s 14 local NHS Boards.
We fully respect your right to privacy when using our services. Here you will find details of our privacy practices and what we do to maintain your right to privacy.
We collect information about you and your organisation when you access any of our services online, by phone or in writing. We only collect the information we ask from you, that you give us and consent, to being processed for the purpose of delivering the Healthy Working Lives programme.
When you are using self-assessments, forms and records on the website, if you are a registered user and sign in to your account, we will:
If you use self-assessments, we will record some of your answers to questions. We only do this where your answers suggest you would benefit from additional free support and you have agreed that we can contact you.
We process your information for the purpose of providing you with services from Healthy Working Lives. This includes some or all of the following:
If you are a Healthy Working Lives award holder, the name of your organisation will be published on the
Holders of the award page.
NHS Health Scotland may share the information we collect with:
We may also disclose the information to a third party where we have a legal obligation to do so. NHS Health Scotland will not share with or sell your personal information to any other organisation.
The information we collect about you and your organisation is stored on an electronic database on a secure server hosted and maintained by a UK/EU third party.
If you create a website account, your account username (your email address) and password is stored on the website Content Management System (CMS).
We will only save form data on the website CMS for 7 days if you have
The website and Healthy Working Lives Surveys tool are hosted on a secure server by a third party in the UK/EU, and are maintained by NHS Health Scotland staff.
The principles of the General Data Protection Regulation (GDPR) require us to make sure your data is accurate, kept up-to-date and that we keep it for no longer than is necessary.
To meet these requirements:
The Healthy Working Lives webchat service is provided by
Click4Assistance (external website). For information on how Click4Assistance handles your data, you can read their
Using our website will generate log files of your activity. These files do not capture personal information but do capture the user's IP address. We store these log files on a secure server.
We use Google Analytics to analyse these files regularly to monitor website usage and evaluate the effectiveness of our website. We do occasionally allow trusted partners and suppliers access to our Google Analytics. This information is not personally identifiable. For more information go to our
We make no attempt to identify individual users of this website, unless we suspect that unauthorised access to our systems is being attempted. We reserve the right to attempt to identify and track any individual who is reasonably suspected of trying to gain unauthorised access to computer systems or resources operating as part of NHS Health Scotland web services. As a condition of using this site, all users give permission for NHS Health Scotland to use its access logs to attempt to track users who are reasonably suspected of gaining, or attempting to gain, unauthorised access.
Under the General Data Protection Regulation (effective from 25 May 2018), there are a number of new rights relating to Data Protection:
You have the following rights:
You can find more information about these rights on the
Information Commissioner’s website (external website).
To request a copy of the information that we hold about you, correct any information that is inaccurate, unsubscribe from our services, or withdraw your consent, you can
contact us or write to us at:
Healthy Working LivesHealth and Work DirectorateNHS Health ScotlandMeridian Court5 Cadogan StreetGlasgowG2 6QE
If you have created a website account, you can sign in and edit your profile to update some of your details.
For enquiries about NHS Health Scotland (the Data Controller) data protection practices, you can contact Duncan Robertson, NHS Health Scotland’s Senior Policy, Risk and Data Protection Officer by email at email@example.com or by phone on 0131 314 5436.
Should you wish to make a complaint about NHS Health Scotland’s collection or use of data, the UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals is the
Information Commissioner’s Office (external website).
Subscribe to receive updates on our services and activities
For information on workplace health, safety and wellbeing, you can speak to one of our specialist advisors.