Equality and Diversity Policy

  1. Policy Statement

Rachel’s Respite and Support is committed to promoting equality, diversity, and inclusion in all areas of our operations.

We believe that a diverse and inclusive environment improves performance, fosters innovation, and reflects the community

we serve. We aim to ensure that no employee, job applicant, volunteer, client, or stakeholder receives less favourable treatment

or is disadvantaged by conditions or requirements that cannot be shown to be justifiable.

  1. Purpose

This policy outlines our commitment to:

  • Promoting equality of opportunity for all
  • Preventing unlawful discrimination
  • Valuing diversity and promoting a culture of inclusion
  • Meeting legal and regulatory requirements
  • Creating a working environment free from bullying, harassment, victimization, and unlawful discrimination
  1. Scope

This policy applies to:

  • All employees (full-time, part-time, temporary, and freelance)
  • Job applicants and former employees
  • Contractors and consultants
  • All aspects of employment and engagement, including recruitment, pay, promotion, training, and termination
  1. Legal Framework

This policy is underpinned by relevant legislation, including (as applicable):

  • UK: Equality Act 2010
  • US: Title VII of the Civil Rights Act 1964, Americans with Disabilities Act 1990
  • Other local, regional, or international laws and guidelines
  1. Our Commitments

We commit to:

  • Treating all individuals fairly and respectfully
  • Monitoring and reviewing employment practices to ensure fairness
  • Providing training on equality, diversity, and inclusion
  • Encouraging equality and diversity in the workplace
  • Supporting underrepresented groups
  • Dealing promptly and effectively with any complaints of discrimination, harassment, or victimization
  1. Protected Characteristics

We do not discriminate based on (but not limited to):

  • Age
  • Disability
  • Gender reassignment
  • Marital or civil partnership status
  • Pregnancy or maternity
  • Race (including color, nationality, ethnic or national origin)
  • Religion or belief
  • Sex
  • Sexual orientation
  1. Responsibilities
  • Employees and Others: Treat colleagues and stakeholders with dignity and respect and report any breaches of this policy.

 

  1. Monitoring and Review

We will:

  • Regularly monitor workforce diversity data (where appropriate and permitted by law)
  • Review this policy at least annually or in response to legal or organizational changes
  • Take corrective action where issues are identified
  1. Complaints and Grievances

Any individual who believes they have experienced discrimination, harassment, or unfair treatment is encouraged to raise

their concern through our grievance procedure or by contacting Human Resources. All complaints will be treated seriously,

confidentially, and investigated promptly.

Data Protection policy

  1. Policy Statement

Rachel’s Respite and Support is committed to protecting the personal and sensitive information of our service users, staff,

families, and third parties in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data

Protection Act 2018.As a care provider, we recognize the importance of confidentiality and the legal and ethical responsibility

to handle personal data appropriately—especially sensitive health and care-related information.

  1. Purpose

This policy sets out how we collect, use, store, and protect personal data in our care setting. It is designed to:

  • Protect the rights and privacy of individuals
  • Comply with regulatory standards, including CQC's Key Lines of Enquiry (KLOEs)
  • Prevent data breaches, misuse, or loss of personal data
  1. Scope

This policy applies to:

  • All staff (including carers, nurses, managers, admin staff, and volunteers)
  • All personal data handled, whether relating to service users, employees, or others
  • All forms of data—paper, electronic, verbal, photographic, etc.
  1. Types of Personal Data We Process

We may collect and process the following types of data:

For Service Users:

  • Name, address, date of birth, next of kin
  • Health and medical history
  • Care plans and risk assessments
  • Medication records
  • Safeguarding information

For Staff:

  • Contact details and emergency contacts
  • DBS checks and right-to-work documents
  • Training and supervision records
  • Health and safety information
  1. Lawful Bases for Processing

We process personal data under the following legal bases:

  • Consent – where explicit consent has been provided
  • Legal obligation – to comply with care regulations and employment law
  • Vital interests – to protect someone's life or wellbeing
  • Public task – as part of providing regulated care
  • Legitimate interests – where appropriate and balanced with individual rights
  1. Confidentiality & Access
  • All staff are bound by confidentiality agreements and must complete data protection training.
  • Access to personal information is limited to staff who need it to perform their role.
  • Service users and employees have the right to access their personal data upon request.
  1. Data Sharing

We will only share personal data when necessary and appropriate, such as:

  • With GPs, hospitals, and health professionals involved in care
  • With CQC or other regulators for inspection or safeguarding purposes
  • With legal representatives or the police, where required by law

We always ensure:

  • Data sharing is lawful and proportionate
  • Data sharing agreements or contracts are in place with third parties
  1. Data Security Measures

We take appropriate steps to secure personal data, including:

  • Locked cabinets and restricted areas for physical files
  • Password protection and encryption for digital records
  • Regular audits and updates of IT systems
  • Staff training on safe handling and reporting of data
  1. Data Retention

We retain data only for as long as necessary:

  • Service user records – typically kept for 8 years after end of care (or as advised by NHS and CQC)
  • Employee records – kept for 6 years after employment ends
  • Records are securely deleted or destroyed when no longer required.
  1. Data Breaches

Any breach or suspected breach of data security must be reported immediately to the Registered Manager or

Data Protection Officer (DPO). We will:

  • Investigate all incidents promptly
  • Report serious breaches to the Information Commissioner's Office (ICO) within 72 hours, if required
  • Notify affected individuals when appropriate
  1. Individual Rights

Under data protection law, individuals have the right to:

  • Access their data (Subject Access Request)
  • Request rectification of inaccurate data
  • Request erasure (in some cases)
  • Restrict or object to processing
  • Data portability (for electronic data)
  1. Responsibilities
  • Registered Manager: Ensures overall compliance and staff awareness
  • Data Protection Officer (if applicable): Oversees policy and handles requests
  • All Staff: Must understand and follow this policy; complete mandatory training
  1. Training

All staff will receive induction and annual training on:

  • GDPR and data protection basics
  • Handling sensitive care data
  • Confidentiality and secure communication
  • Recognizing and reporting data breaches
  1. Policy Review

This policy will be reviewed annually or sooner if:

  • Laws or guidance change
  • New risks are identified
  • Significant incidents occur

Create Your Own Website With Webador