Right, let's talk about medical assessments and who sees what – because not everyone needs to see everything, and that's by design.
When it comes to driver medical assessments, you, as a manager or Transport Manager, will see the outcome – think 'fit,' 'needs review,' that sort of thing – and which categories were flagged. But you won't see the underlying clinical detail. This isn't an oversight; it's a deliberate access control, fully aligned with ICO guidance on workers' health information. The idea is simple: operational managers need to see what they need to manage, not raw medical history.
So, who does get to peek behind the curtain at those raw clinical answers? Only a select few:
- The driver themselves (they see it via their magic link, before they hit submit).
- Users you've specifically designated as Medical Reviewers. You tick that checkbox on their user profile to give them that access.
Heads up — if you're a manager and you genuinely need to dive into the clinical detail to make a decision, don't guess. Escalate it to a Medical Reviewer or your orgAdmin. Quick one: if your organisation only has a couple of trusted people who should ever see this sensitive data, make sure they're flagged as Medical Reviewers and keep everyone else as standard managers. Fire prevention beats fire fighting when it comes to data privacy.
Keeping sensitive data compliant and accessible to the right eyes is a breeze when DDIR handles the heavy lifting.