CELEBRATING 30 YEARS OF EXCELLENCE
CLAIM YOUR VOUCHER
£30 OFF WHEN YOU SPEND £100
CLAIM YOUR VOUCHER
CELEBRATING 30 YEARS OF EXCELLENCE
CLAIM YOUR VOUCHER
GET £30 OFF WHEN YOU SPEND £100
CLAIM YOUR VOUCHER
CELEBRATING 30 YEARS OF EXCELLENCE
CLAIM YOUR VOUCHER
GET £30 OFF WHEN YOU SPEND £100
CLAIM YOUR VOUCHER
CELEBRATING 30 YEARS OF EXCELLENCE
CLAIM YOUR VOUCHER
GET £30 OFF WHEN YOU SPEND £100
CLAIM YOUR VOUCHER

Quality Policy and Information Security Policy

Quality and Information Security are vital to our business as our reputation is key to our success. We
have established an excellent reputation for the provision of high quality medical, optical, laboratory
testing and health care services, confirmed by our long-standing client relationships and regular
referrals. We recognise that we can only maintain this position by constantly striving to provide care of
outstanding quality and protecting the data we hold. We value our clients both current and new and
endeavour to provide them all with services which exceed their expectations.

We are committed to continuous improvement and our aim is to comply with the requirements of
SEQOHS, and the International Standards ISO 9001:2015, ISO 15189:2022, ISO 27001:2022 and & CQC.
We have an established Quality and Information Security Management System, which provides a
framework for measuring and improving our performance.

We aim to achieve this by:

  • Consistently delivering professional services of the highest quality and value
  • Fostering strong relationships with our clients so that we can anticipate their needs and ensure
    they are satisfied
  • Only employing/engaging experienced and appropriately qualified and registered staff for
    each role
  • Continually upgrading our services, technology, and capabilities to reflect rapidly changing
    client-led demand
  • Ensuring compliance with ISO 9001.2015, ISO 15189:2022, ISO 27001:2022, SEQOHS and the CQC

Our Quality and Information Security Objectives indicators have been developed in line with this policy.
We review these objectives and this policy regularly in our management review meetings and ensure
that our progress and any changes are communicated to all staff.

Our internal procedures are reviewed regularly for continuing suitability and are held in a Quality
Manual, which is made available to all staff.

This Quality and Information Security Policies applies to The Fleet Street Clinic and Whitby & Co. and is
communicated to all staff via our online HR information management system. All staff are provided
with general QMS training and Information Security training on induction to ensure our processes are
understood. This training is then repeated periodically.

Although the Directors have ultimate responsibility for Quality and Information Security, all staff have a
responsibility within their own areas of work/practice to report issues to the Clinic Manager. This
ensures that Quality and Information Security are fundamental values that are embedded within and
across the business as a whole.

We will ensure that:

  1. All staff are appropriately trained and competent for the job they are required to do. All staff are
    provided with a detailed job description and have clearly defined responsibilities.
  2. All staff are trained regularly on the use of good Information Security practices.
  3. All staff are subject to an annual appraisal whereby objectives will be reviewed and set for the
    upcoming year and training and development needs will be assessed.
  4. Any externally provided services are selected and controlled so that our health and safety,
    information security and environmental policies are not compromised, and staff and patients
    are not put at risk. Due diligence is conducted on our suppliers regularly.
  5. Defined targets are set for each aspect of our service. Internal and external audits are
    conducted to monitor and evaluate the strengths and weaknesses of each aspect of our
    service to ensure consistently high levels of delivery. The results of these assessments are
    disseminated widely among staff as part of our ongoing training and development
    programme.
  6. Feedback from both private patients and corporate clients is monitored and assessed regularly.
  7. Monitoring and review of the work environment, equipment, infrastructure and examination
    needs is conducted frequently to ensure patient and staff satisfaction.
  8. Examination procedures are used to ensure that tests are of acceptable quality and fit for their
    intended use.
  9. Results are reported in a timely way; to provide clinical support for all laboratory services; to
    ensure that no patient receives an inconclusive result and wherever necessary and/or
    appropriate an inconclusive sample will be repeated or processed on a different platform at no
    additional cost.
  10. Incident reporting procedures are in place for suspected or actual data breaches.
  11. All staff and external third parties used by the clinic sign confidentiality agreements.
  12. Regular information security training is provided to all staff.
  13. Information security risks are identified, assessed and mitigated via our risk management
    framework.
  14. We identify and satisfy applicable legal, contractual and other requirements related to
    information security, quality and general business operations.