Whilst the prompts under KLOE W2 do not specifically reference the Data Security and Protection (DSP) Toolkit, it details that providers should operate within a framework that demonstrates robustĪrrangements around the security, availability, sharing and integrity of confidential data, records and data management standards.Ĥ.5 – It has been recognised that social care services such as Primrose Healthcare Services Ltd can be very different to health services, and this has been reflected in the revised approach to the Data Security and Protection (DSP) Toolkit for social This will help to demonstrate best practice and ensure compliance with the 10 Data Security Standards.Ĥ.4 – The CQC includes a focus on the use of technology and sharing information for the benefit of the care to the However, it is recommended that all social care providers consider compliance with the new Data Security and Protection (DSP) Toolkit. IT suppliers are held accountable via contracts for protecting the personal confidential data they process and meeting the National Data Guardian’s Data Security StandardsĤ.3 – If Primrose Healthcare Services Ltd does not provide care through the NHS Standard Contract, there is no required action to
#NATIONAL DATA GUARDIAN 10 STANDARDS SOFTWARE#
No unsupported operating systems, software or Internet browsers are used within the IT estateĪ strategy is in place for protecting IT systems from cyber threats which is based on a proven cyber security framework such as Cyber Essentials. Action is taken immediately following a data breach or a near miss, with a report made to senior management within 12 hours of detectionĪ continuity plan is in place to respond to threats to data security, including significant data breaches or near misses, and it is tested once a year as a minimum, with a report to senior management Processes are reviewed at least annually to identify and improve processes which have caused breaches or near misses, or which force staff to use workarounds which compromise data securityĬyber attacks against services are identified and resisted. All access to personal confidential data on IT systems can be attributed to individuals Personal confidential data is only accessible to staff who need it for their current role and access is removed as soon as it is no longer required. Personal confidential data is only shared for lawful and appropriate purposesĪll staff understand their responsibilities under the National Data Guardian’s Data Security Standards, including their obligation to handle information responsibly and their personal accountability for deliberate or avoidable breachesĪll staff complete appropriate annual data security training and pass a mandatory test, provided through the revised Information Governance Toolkit
As a result of this requirement, Primrose Healthcare Services Ltd recognizes the importance of data security and cyber protection and is committed to maintaining systems that support confidentiality and the wider understanding of how data must beĤ.2 – The Data Security and Protection Toolkit allows Primrose Healthcare Services Ltd to measure its performance against the National Data Guardian’s 10 Data Security Standards, which are:Īll staff ensure that personal confidential data is handled, stored and transmitted securely, whether in electronic or paper form.
These requirements apply to all health and care organizations.4.1 – The Data Security and Protection Toolkit is an online self-assessment tool that Primrose Healthcare Services Ltd and all social care providers must use if they have access to NHS patient data and systems. It will form part of a new framework for assuring that organizations are implementing the ten data security standards and meeting their statutory obligations on digital data protection and data security. Publication date: October 2017 Target audience: NHS Providers General Practice Social Careįrom April 2018 the new Data Security and Protection Toolkit (DSP Toolkit) replaces the Information Governance Toolkit (IG Toolkit). What are the 10 Data Security Standards Recommended by National Data Guardian? What are the 10 Data Security Standards Recommended by National Data Guardian for Health & Care, NHS England? 2017/18 Data Security and Protection Requirements
0 kommentar(er)
