Handling Third-Party Requests for Patient Information for GP Receptionists and Care Navigators

Safe responses to relatives, carers, organisations and other information requesters

  • Reputation

    No token earned yet.

    Reach 50 points to earn the Peridot (Trainee Level).

  • CPD Certificates

    Certificates

    You have CPD Certificates for 0 courses.

  • Exam Cup

    No cup earned yet.

    Average at least 80% in exams to earn the Bronze Cup.

Launch offer: Certificates are currently free when you create a free account and log in. Log in for free access

Why third-party requests need careful handling

Middle-aged male patient speaking to receptionist at GP desk

Third-party requests are routine in general practice: a relative asking about blood results, a carer reporting confusion, a school checking attendance, an employer requesting a sick note, or a police officer asking for an address. Each request requires care because patient information is confidential.

Helpful does not always mean authorised

Relatives and carers often provide useful context, for example about medication routines, transport, memory problems or safety concerns. That does not automatically give them the right to receive confidential details from the record.

Separate two questions: can we accept the information being offered, and can we disclose information back? Often you can record concerns or listen to relevant observations without confirming appointments, results, diagnoses or treatment.

Small disclosures can still matter

Staff may feel that brief confirmations are harmless – for example, saying a patient is registered, that a letter has arrived, or that a clinician has called. Even these small details can reveal private information when the caller is not authorised.

A practical habit is to describe processes rather than patient content. Explain how an authorised person can contact the practice, how to request proxy access, or how to pass on urgent concerns, without confirming confidential details.

Common risk points

  • Assuming family status is enough: a spouse, adult child or sibling may still need consent or recorded authority.
  • Oversharing during helpful conversation: small details can confirm more than intended.
  • Using unsafe contact routes: call-backs, texts or voicemail may reveal information to the wrong person.
  • Missing safeguarding clues: a caller may be controlling access rather than supporting it.

Scenario

A woman says, "I am his daughter. I know all his tablets and I need his blood test result now because he never tells me anything."

What should you recognise?

 
Optional: Not part of the course final assessment.
Another?

Third-party requests are not just admin tasks; they are confidentiality decisions that may also reveal care or safeguarding concerns.

Ask Dr. Aiden

Rate this page

Course Snapshot

  • Not rated yet
  • Length: 60 minutes CPD (1.00 CE Credits)
  • Appropriate for: gp receptionist, care navigator, call handler, reception manager, practice administrator, practice manager, frontline admin staff
  • 100% Online
  • Assessment requirements

    To receive a CPD certificate you must view all course pages while logged in, then take a MCQ assessment.

    • 10 questions, pass mark 80%.
    • You have unlimited attempts.
Course tools & details Study tools, course details, quality and recommendations

Study Tools

Personal Development Plan

Add this course to your Personal Development Plan.

Please log in to save this to your PDP.
View my course notes Open your saved notes for this course. Share this course Send the course link to a colleague or friend.

Course Details

Trust & Quality

Mecourse applies stringent Quality Controls to every course for the highest level of content integrity and accuracy in our educational resources.

Recommended Courses

Funding & COI Media Credits