Government data security consultation
The Government has been conducting a data security review, run by Dame Fiona Caldicott, the National Data Guardian for Health and Care. A report has now been produced with ten proposed standards:
- All staff ensure that personal confidential data is handled, stored and transmitted securely, whether in electronic or paper form. Personal confidential data is only shared for lawful and appropriate purposes.
- All staff understand their responsibilities under the National Data Guardian’s Data Security Standards including their obligation to handle information responsibly and their personal accountability for deliberate or avoidable breaches.
- All staff complete appropriate annual data security training and pass a mandatory test, provided through the revised Information Governance Toolkit.
- Personal confidential data is only accessible to staff who need it for their current role and access is removed as soon as it is no longer required. All access to personal confidential data on IT systems can be attributed to individuals.
- Processes are reviewed at least annually to identify and improve processes which have caused breaches or near misses, or which force staff to use workarounds which compromise data security.
- Cyber-attacks against services are identified and resisted and CareCERT security advice is responded to. Action is taken immediately following a data breach or a near miss, with a report made to senior management within 12 hours of detection.
- A continuity plan is in place to respond to threats to data security, including significant data breaches or near misses, and it is tested once a year as a minimum, with a report to senior management.
- No unsupported operating systems, software or internet browsers are used within the IT estate.
- A strategy is in place for protecting IT systems from cyber threats which is based on a proven cyber security framework such as Cyber Essentials. This is reviewed at least annually.
- Suppliers are held accountable via contracts for protecting the personal confidential data they process and meeting the National Data Guardian’s Data Security Standard.
The Government are seeking feedback on the proposed ten standards via an online survey, which is open until 7 September 2016.
Last updated : 19 Jul 2016Superfast broadband vouchers worth up to £3000 are available. (11 Sep 2015)
The government’s superfast broadband connection vouchers are still available to small and medium sized businesses in 22 super connected cities across the UK. London is one of the 22 super...Don’t let your NMC registration lapse – important information for nurses and practice managers. (11 Sep 2015)
From November 2015 anyone who allows their registration to lapse will need to make an application for readmission to regain access to the registrar. This could take between two...Updated Subject Access Requests (SARs) guidance from the BMA (11 Sep 2015)
The BMA has issued guidance Focus on’ guidance on Subject Access Requests (SARs) for insurance purposes. The guidance has been updated following the Information Commissioner’s Office input and includes...Training and development events for GPs and practice staff (11 Sep 2015)
Reflective Practice Masterclass (10 October 2015, 13 November 2015 and 4 December 2015) – Each master class helps individuals to identify both the organisational and psychological barriers to change and...Increased savings on magazine subscription packages with DLT Magazines (11 Sep 2015)
DLT are the UK’s leading supplier of magazine subscription packages to businesses. Offering permanent discounts of up to 70% off cover prices and a range of over 150 leading titles,...Egg-free flu vaccine Optaflu now available (11 Sep 2015)
MASTA, one of the Buying Group’s approved flu vaccine suppliers for the 2015-16 season, is now carrying stocks of the egg-free flu vaccine Optaflu. This can be delivered out with...Retired Quality and Outcomes Framework (QOF) indicators update (11 Sep 2015)
Following concerns highlighted by practices in relation to the request from the Health and Social Care Information Centre (HSCIC) to extract data related to retired QOF indicators, the BMA’s General...Friends and Family Test - act now to avoid a breach notice (11 Sep 2015)
We are aware that there may be some confusion about the data required for the Friends and Family Test (FFT). NHS England data on the monthly returns show that many...Warning for practices over PBX phone systems (11 Sep 2015)
There are reports that some businesses have recently been victims of PBX (Private Branch Exchanges) fraud where a hacker accessed their phone lines and made premium rate calls at a...Speakers' Corner - Undergraduate teaching in General Practice. Your medical school needs you! (09 Sep 2015)
This month Joe Rosenthal, Senior Lecturer in General Practice & Sub-Dean for Community Based Teaching at UCL Medical School, gives us his view of undergraduate teaching in general practice....Guidance
We provide expert guidance for practices in our guidance section, as well as an archive of other materials you may find useful.
GP Support
Contact our GP Support team if you need help or advice.
The team provide professional and pastoral support to GPs and practice teams on a broad range of issues.
follow us on...
