Your responsibility as a data processor is to handle and process personal data on behalf of the data controller. 

You will process personal data for patients on a day to day basis as part of your job role. Therefore, you can be held accountable under GDPR law if you do not act responsibly with the personal data you process. It is very important for you to understand what data protection is and the new GDPR law changes.