Summer bank holiday
Some Council services will be closed for the bank holiday on Monday 25 August 2025.
Privacy Notice for Public Health Services
Solihull Metropolitan Borough Council (SMBC) is a data controller for the purposes of data protection legislation. The Public Health team of SMBC also has a legal status allowing the processing of personal confidential information for certain public health purposes (as outlined below in this statement). The use of such information will be restricted for these legal purposes and in full adherence to the principles contained in data protection legislation
All local authorities have a duty to improve the health of the population they serve. To help with this we use information from a range of sources; including that collected at the registration of a birth or death, to understand more about the health and care needs in the area. Public Health teams within local authorities are also required to commission and manage services for their population.
The Public Health team collects and holds information for public health purposes about:
all of whom it has a public health duty of care.
This information is collected in two ways:
The Public Health team uses personal identifiable and special category information about residents and service users, to enable it to carry out specific functions for which it is responsible, such as:
Personal information means details which relate to a living individual, who can be identified from the information or from that and other information held by the data controller (i.e. it can be linked to become identifiable).
This information includes:
The Public Health team also uses the information to derive statistics and intelligence for research and planning purposes, which include:
In these cases, the information is used in such a way that individuals cannot be identified and personal identifiable details are removed as soon as possible in the processing of intelligence.
We are required to comply with data protection legislation to ensure information is managed securely. This is reviewed every year as part of our NHS Information Governance Toolkit assessment.
Any personal identifiable information is sent or received using secure email. All information is stored electronically within the United Kingdom on secure equipment and is managed using the principles of medical confidentiality and data protection. The number of staff accessing and handling such information, is limited to only those key professionals named on relevant signed information sharing agreements (where applicable); all who of whom undertake regular training about data protection and managing personal information.
Confidential public health information will only be shared with other areas of the NHS, local authorities or care organisations with the permission of the Caldicott Guardian, once the necessary legal basis has been established and data protection safeguards have been verified; so that the information is managed and used under the same restrictions. Anyone who receives information from the SMBC Public Health team is also under a legal duty to keep it confidential.
In relation to births and deaths, the information will only be processed by local authority employees in fulfilment of their public health function. It will not be transferred, shared, or otherwise made available to any third party, including any organisations processing information on behalf of the local authority, or in connection with their legal function.
It will be kept for the minimum period necessary and in line with legislation.
Information is not transferred overseas.