Government data security consultation

The Government has been conducting a data security review, run by Dame Fiona Caldicott, the National Data Guardian for Health and Care. A report has now been produced with ten proposed standards:

  1. All staff ensure that personal confidential data is handled, stored and transmitted securely, whether in electronic or paper form. Personal confidential data is only shared for lawful and appropriate purposes.
  2. All staff understand their responsibilities under the National Data Guardian’s Data Security Standards including their obligation to handle information responsibly and their personal accountability for deliberate or avoidable breaches.
  3. All staff complete appropriate annual data security training and pass a mandatory test, provided through the revised Information Governance Toolkit.
  4. Personal confidential data is only accessible to staff who need it for their current role and access is removed as soon as it is no longer required. All access to personal confidential data on IT systems can be attributed to individuals.
  5. Processes are reviewed at least annually to identify and improve processes which have caused breaches or near misses, or which force staff to use workarounds which compromise data security.
  6. Cyber-attacks against services are identified and resisted and CareCERT security advice is responded to. Action is taken immediately following a data breach or a near miss, with a report made to senior management within 12 hours of detection.
  7. A continuity plan is in place to respond to threats to data security, including significant data breaches or near misses, and it is tested once a year as a minimum, with a report to senior management.
  8. No unsupported operating systems, software or internet browsers are used within the IT estate.
  9. A strategy is in place for protecting IT systems from cyber threats which is based on a proven cyber security framework such as Cyber Essentials. This is reviewed at least annually.
  10. Suppliers are held accountable via contracts for protecting the personal confidential data they process and meeting the National Data Guardian’s Data Security Standard.

The Government are seeking feedback on the proposed ten standards via an online survey, which is open until 7 September 2016.

Last updated : 19 Jul 2016

 

GP State of Emergency success: TFL change fees advice (16 Jul 2018)

Following a letter from our GP State of Emergency team, Transport for London have updated their advice to applying for a private hire driver licence to reflect that the charge...
Read more »

Dr Michelle Drage's statement on the new Secretary of State for Health and Social Care (10 Jul 2018)

Dr Michelle Drage responds to the appointment of Matthew Hancock as Secretary of State for Health and Social Care. "Congratulations and welcome to new Health Secretary Matthew Hancock. "I’d love...
Read more »

Perinatal mental health access variation (06 Jul 2018)

The Pan-London Perinatal Mental Health Network are gathering information on disparities in access to, and funding for, perinatal mental health within secondary and tertiary care. This map produced by the...
Read more »

Salisbury Novichok 1 incident - Public Health England interim guidance (05 Jul 2018)

Following the recent Salisbury Novichok 1 incident, Public Health England have issued interim guidance on the diagnosis and early management in organophosphate chemical incidents. This guidance can be downloaded 
Read more »

Tips of the month June 2018 (20 Jun 2018)

We provide weekly tips based on common queries which come through to us from London GPs and practice teams. These are shared via social media and collated for...
Read more »

Free online mindfulness course for patients (19 Jun 2018)

Londoners can now access a free online mindfulness tool via the Good Thinking website. The website signposts individuals to resources to help deal with depression, anxiety, stress and insomnia...
Read more »

GP State of Emergency continues (19 Jun 2018)

Since April 2016 when GPs in London and across the country declared a GP State of Emergency, our campaign has been a great success. However, we recognise that the...
Read more »

SNOMED CT update for SystmOne practices (19 Jun 2018)

The first phase of the national deployment of SNOMED CT has now taken place with approximately 20 pilot sites taking part. The wider roll-out for SystmOne GP practices will be...
Read more »

Publication of Integrated Care - Organisations, Partnerships and Systems (19 Jun 2018)

  Online report   PDF download The Committee considered the increasing reliance on a range of health and care services, which are mostly...
Read more »
Next Page »
« Previous Page