Government data security consultation
The Government has been conducting a data security review, run by Dame Fiona Caldicott, the National Data Guardian for Health and Care. A report has now been produced with ten proposed standards:
- All staff ensure that personal confidential data is handled, stored and transmitted securely, whether in electronic or paper form. Personal confidential data is only shared for lawful and appropriate purposes.
- All staff understand their responsibilities under the National Data Guardian’s Data Security Standards including their obligation to handle information responsibly and their personal accountability for deliberate or avoidable breaches.
- All staff complete appropriate annual data security training and pass a mandatory test, provided through the revised Information Governance Toolkit.
- Personal confidential data is only accessible to staff who need it for their current role and access is removed as soon as it is no longer required. All access to personal confidential data on IT systems can be attributed to individuals.
- Processes are reviewed at least annually to identify and improve processes which have caused breaches or near misses, or which force staff to use workarounds which compromise data security.
- Cyber-attacks against services are identified and resisted and CareCERT security advice is responded to. Action is taken immediately following a data breach or a near miss, with a report made to senior management within 12 hours of detection.
- A continuity plan is in place to respond to threats to data security, including significant data breaches or near misses, and it is tested once a year as a minimum, with a report to senior management.
- No unsupported operating systems, software or internet browsers are used within the IT estate.
- A strategy is in place for protecting IT systems from cyber threats which is based on a proven cyber security framework such as Cyber Essentials. This is reviewed at least annually.
- Suppliers are held accountable via contracts for protecting the personal confidential data they process and meeting the National Data Guardian’s Data Security Standard.
The Government are seeking feedback on the proposed ten standards via an online survey, which is open until 7 September 2016.
Last updated : 19 Jul 2016Sign-up to our new Buying Group and win an Amazon Kindle Fire tablet (20 Mar 2018)
Any practice who signs-up to our new Buying Group before 12:00 Wednesday 2 May (end of the morning break during our conference) will be entered in a draw to win...National Data Opt-Out to be introduced alongside the GDPR in May (16 Mar 2018)
The Government has announced that the national data opt-out will be introduced alongside the GDPR on 25 May 2018. It has also been agreed to present the national data opt-out...CQC update on the 2017/18 Data Security and Protection Requirements (16 Mar 2018)
The Care Quality Commission (CQC) has issued an update on the nine requirements for general practice from the 2017/18 Data Security and Protection Requirements. The Department of Health has...GDPR – further guidance now available (16 Mar 2018)
The EU’s General Data Protection Regulation (GDPR) comes into force on 25 May 2018 when it replaces the UK Data Protection Act 1998. The GDPR is significant and wide-reaching in...Tips of the Month March 2018 (16 Mar 2018)
We provide weekly tips based on common queries which come through to us from London GPs and practice teams. These are shared via social media and collated for...CQC inspections and Significant Event Analysis (15 Mar 2018)
Our GP support team have seen an increase in the number of ‘Inadequate’ and ‘Requires Improvement’ CQC reports which identify the lack of awareness, discussion and/or documentation of Significant Event...GPC update on type 2 certificate deadline (28 Feb 2018)
Dr Krishan Aggarwal, Deputy Chair of the GPC’s Sessional Subcommittee has sent the following message out to GPs: “As you may be aware, the deadline for submission for the...Londonwide LMCs' February 2018 newsletter (22 Feb 2018)
Join our new Londonwide LMCs' Buying Group (21 Feb 2018)
We are delighted that so many practices have joined our new Londonwide LMCs’ Buying Group. The group will give registered London practices unique discounts on key products and services. ...Practice finance event Q and A summary (20 Feb 2018)
Our sold-out practice finance workshops in January provided the opportunity for GPs and practice staff ask questions to a number of experts and organisations; we have summarised some of these...Guidance
We provide expert guidance for practices in our guidance section, as well as an archive of other materials you may find useful.
GP Support
Contact our GP Support team if you need help or advice.
The team provide professional and pastoral support to GPs and practice teams on a broad range of issues.
follow us on...
