Version: 3.0. Effective From: 19/06/2014

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "Version: 3.0. Effective From: 19/06/2014"

Transcription

1 Policy No: RM66 Version: 3.0 Name of Policy: Business Continuity Planning Policy Effective From: 19/06/2014 Date Ratified 05/06/2014 Ratified Business Service Development Committee Review Date 01/06/2016 Sponsor Director of Estates and Facilities Expiry Date 04/06/2017 Withdrawn Date This policy supersedes all previous issues. Business Continuity Planning Policy v3

2 Version Release Author/ Reviewer Version Control Ratified by/ Authorised by 1.0 July 2009 A Colwell HR Committee /02/2011 A Colwell Business and Service Development Committee Date 16/03/ /12/2010 Changes (please identify page no) OP 27 format CQC requirements Major Incident Planning Group /06/2014 A Colwell Business and Service Development Committee 22/02/2011 Updated risk assessment score matrix 05/06/2014 Change in management and director roles. Revised policy operation at Section 6 Business Continuity Planning Policy v3 2

3 Contents 1. Introduction Policy Scope Aim of this Policy Roles and Responsibilities Definitions Delivery of the Policy Business Services & Development Committee (BSDC) Business Continuity Group (BCG) Major Incident Planning Group (MIPG) Corporate Business Continuity Management Plan Business Continuity Plans Business Impact Analysis measuring impacts over time Threat Assessment Impacts Identification of Business Threats Continuity Planning Strategy Review of Business Continuity Plans Risk Assessments Training Equality and Diversity Monitoring compliance with the policy Consultation and review of this policy Implementation of policy (including raising awareness) References Business Continuity Planning Policy v3 3

4 1. Introduction This Trust delivers a wide range of services to its local community. Failure to deliver these services could have a detrimental impact on the health of the public and the viability of our business. It is therefore essential that the Trust has robust business continuity plans (BCP) in place. The consequences of not having effective BCP in place could have serious implications, including: failure to deliver key services possibility of loss of life or injury loss of Public Confidence exposure to the potential to legal action, leading to subsequent heavy financial penalties. 2. Policy Scope This policy is applicable to all Trust functions, services, divisions departments within and provided by the trust. The policy covers the trusts responsibilities as Category 1 responders under the Civil Contingencies Act and respective Care Quality Commissions standards. 3. Aim of this Policy The aim of this policy is to build into the culture, that business continuity is embedded within the organisation, rather than fire fighting any emergency so that business asusual is achieved in the quickest possible time. This will increase confidence in the organisation and the reputation of the Trust. 4. Roles and Responsibilities Director of Estates and Facilities (Accountable Officer Emergency Planning) The Director of Estates and Facilities leads on behalf of the Chief Executive and the Trust Board for Business Continuity Planning. Senior Managers, Heads of Service and Service Managers Senior Managers, Heads of Service and Service Managers will be responsible for undertaking appropriate risk assessment process which includes the completion of appropriate Business Continuity Plans as outlined in this policy and when required present Business Continuity Plans to the Major Incident Planning Group. In addition it is their responsibility to ensure that all risks are entered onto the Trust Risk Register Head of Facilities The Head of Facilities is responsible for the strategic delivery of the Business Continuity Planning Strategy ensuring that tactical and operational level plans are coordinated and assurance is provided via the Major Incident Planning Group Annual Report to the Trust Board on Business Continuity. Business Continuity Planning Policy v3 4

5 5 Definitions Business Continuity Management For the NHS, Business Continuity Management is defined as: The management process that enables an NHS organisation: to identify those key services which, if interrupted for any reason, would have the greatest impact upon the community, the health economy and the organisation. to identify and reduce the risks and threats to the continuation of these key services. to develop plans which enable the organisation to recover and/or maintain core services in the shortest possible time. For the NHS service interruption may be defined as: Any disruptive challenge that threatens personnel, buildings or the operational procedures of an organisation and which requires special measures to be taken to restore normal operating functions. Civil Contingencies Act Within the Civil Contingencies Act 2004, all acute Trusts have legal responsibilities as Category One responders. Category One responders are required to take up their civil protection duties and be able to perform their functions so far as necessary or desirable to respond to an emergency. Part of this responsibility is to produce Business Continuity Plans. Care Quality Commission In addition to our own internal performance monitoring the trust is also subject to Outcome 10 of the CQC standard which stipulates that People who work, visit or use our services can be confident that, in relation to maintenance and renewal: There are clear procedures, followed in practice, monitored and reviewed which cover, What will happen in the event of electricity, water or gas supply failure What will happen in the event of a fire or flooding Other emergencies that occur on the premises How the situation will be managed should IT or communication systems which are integral to the premises fail. Business Continuity Planning Policy v3 5

6 6. Delivery of the Policy 6.1 Business Services & Development Committee (BSDC) The BSDC is responsible for receiving strategic level assurance for Business Continuity. The assurance arrangements for BCP are as follows. 6.2 Business Continuity Group (BCG) The Business Continuity Group is a multi disciplinary sub group of the BSDC and has been established to provide a focus for business continuity arrangements at a Tactical/ Operational level throughout the Trust. The Group will liaise with the Major Incident Committee and report outcomes for assurance to the BSDC committee. The delivery of the policy will be undertaken by the BCG. The purpose of the Business Continuity Group is to ensure that adequate and realistic Business Continuity Plans and arrangements are in place throughout the organisation to ensure that Trust services can continue, as far as is reasonably practicable, in the case of a business continuity incident. The Business Continuity Group will ensure that effective Business Continuity Planning is undertaken across all directorates through, Business Continuity Planning Policy v3 6

7 a) Ensuring that adequate and realistic business continuity impact assessments and arrangements are in place in each functional area; b) Prioritise individual Business Continuity Plans; c) Co ordinate the integration of individual Business Continuity Plans; d) Co ordinate the production of a Trust wide Business Continuity Plans; e) Ensure that functional Business Continuity Plans are reviewed and updated in accordance with the requirements of the Trust s Business Continuity Policy; f) Monitor business continuity management control strategies, ensuring that actions are followed up; g) Co ordinate the exercising of Trust Business Continuity Plans; h) Promote and embed a business continuity management culture; i) Ensure the as far as reasonable practicable that the Trust complies with good practice guidance issued by respective industry Standards. j) Monitor progress against the Business Continuity action plan; k) Monitor the effectiveness of the Trust s Business Continuity Policy and provide assurance reports to the BSDC Committee and Trust Board Major Incident Planning Group (MIPG) Business Continuity Management can be seen as complementary to those involved in emergency management. Emergency management is carried out through the work of the Major Incident Planning Group. It is critical therefore that both processes are integrated and complementary to each other as a major incident may occur at the same time as a business continuity issue, or be triggered by it. The Trust s MIPG is to have in place effective arrangements to maintain the most critical services and to ensure that these arrangements are regularly reviewed and practiced. 6.4 Corporate Business Continuity Management Plan Response to Business Continuity Incidents are detailed within the Corporate Business Continuity Management Plan. This plan describes the management procedures both in and out of hours, to determine the severity of the business interruption and to determine the trigger points for a Hospital Control Team to be assembled. Account will also be taken of other Trust policies relating to the management of untoward incidents eg Majax Plan. 6.5 Business Continuity Plans The Trusts Business Continuity Planning process will be inclusive of a Business Impact Analysis process conducted at the departmental level. Part of this process will include the consideration of contingencies to support mitigation. Business Continuity Planning Policy v3 7

8 6.6 Business Impact Analysis measuring impacts over time Business impact analysis is crucial to the development of an effect business continuity management strategy. It consists of the following stages: The identification of key services The assessment of the principal risks to these services The consequences to the organisation if no action were taken to mitigate the risks The setting of timescales for the recovery of key services Business impact analysis must also take account of dependencies in relation to an activity/ process and/ or business function. 6.7 Threat Assessment Impacts The threat assessment utilises a framework to identify and validate the potential outcome of a loss to an activity/ process and/ or business function. The criticality of the risks will be assessed according to impact on the Trust in terms of impact categories x timing that the impact will likely have an effect on the Trust. Not all services will be as critical as others and not all impacts will be applicable to all processes or activities. The framework will therefore identify the impact as a cumulative risk score for the process/ activity. The impact categories will be classified as follows, Financial Finance including claims Legal Failure to carry out statutory duty/ inspections Regulatory Issues affecting quality Outcomes resulting in complaints Failure to undertake audit provide assurance Service Delivery Service/business interruption Environmental impact Image Adverse publicity/ reputation Health and Safety Impact on the safety of patients, staff or public (physical/psychological harm) Business Continuity Planning Policy v3 8

9 Table 1 Impact Category Guidance Impact score (severity levels) and examples of descriptors Domains Negligible Minor Moderate Major Extreme HEALTH AND SAFETY Impact on the safety of patients, staff or public (physical/psychological harm) Minimal injury requiring no/minimal intervention or treatment. No time off work Minor injury or illness, requiring minor intervention Requiring time off work for >3 days Increase in length of hospital stay by 1 3 days Moderate injury requiring professional intervention Requiring time off work for 4 14 days Increase in length of hospital stay by 4 15 days RIDDOR/agency reportable incident An event which impacts on a small number of patients Major injury leading to long term incapacity/disability Requiring time off work for >14 days Increase in length of hospital stay by >15 days Mismanagement of patient care with long term effects Incident leading to death Multiple permanent injuries or irreversible health effects An event which impacts on a large number of patients REGULATORY Quality/complaints/audit LEGAL Statutory duty/ inspections Peripheral element of treatment or service suboptimal Informal complaint/inquiry No or minimal impact or breech of guidance/ statutory duty Overall treatment or service suboptimal Formal complaint (stage 1) Local resolution Single failure to meet internal standards Minor implications for patient safety if unresolved Reduced performance rating if unresolved Breech of statutory legislation Reduced performance rating if unresolved Treatment or service has significantly reduced effectiveness Formal complaint (stage 2) complaint Local resolution (with potential to go to independent review) Repeated failure to meet internal standards Major patient safety implications if findings are not acted on Single breech in statutory duty Challenging external recommendations/ improvement notice Non compliance with national standards with significant risk to patients if unresolved Multiple complaints/ independent review Low performance rating Critical report Enforcement action Multiple breeches in statutory duty Improvement notices Totally unacceptable level or quality of treatment/service Gross failure of patient safety if findings not acted on Inquest/ombudsman inquiry Gross failure to meet national standards Multiple breeches in statutory duty Prosecution Complete systems change required Low performance rating Zero performance rating IMAGE Adverse publicity/ reputation Rumours Potential for public concern Local media coverage short term reduction in public confidence Elements of public expectation not being met Local media coverage long term reduction in public confidence Critical report National media coverage with <3 days service well below reasonable public expectation Severely critical report National media coverage with >3 days service well below reasonable public expectation. MP concerned (questions in the House) Total loss of public confidence Business Continuity Planning Policy v3 9

10 Impact score (severity levels) and examples of descriptors Domains Negligible Minor Moderate Major Extreme FINANCE Finance including claims SERVICE DELIVERY Service/business interruption Environmental impact Small loss Risk of claim remote Loss/interruption of >1 hour Minimal or no impact on the environment Loss of per cent of budget Claim less than 10,000 Loss/interruption of >8 hours Minor impact on environment Loss of per cent of budget Claim(s) between 10,000 and 100,000 Loss/interruption of >1 day Moderate impact on environment Uncertain delivery of key objective/loss of per cent of budget Claim(s) between 100,000 and 1 million Purchasers failing to pay on time Loss/interruption of >1 week Major impact on environment Non delivery of key objective/ Loss of >1 per cent of budget Failure to meet specification/ slippage Loss of contract / payment by results Claim(s) > 1 million Permanent loss of service or facility Catastrophic impact on environment Table 3 Impact scoring = Impact category x timing Impact Risk Score Likelihood score Rare Unlikely Possible Likely Almost certain 5 Catastrophic Major Moderate Minor Negligible For grading risk, the scores obtained from the risk matrix are assigned grades as follows 1 3 Low risk 4 6 Moderate risk 8 12 High risk Extreme risk 6.5 Identification of Business Threats In the completion of the BIA the process will consider the greatest threat/s that could disrupt the Trust s business. These threats could be external e.g. Natural or man made disasters i.e. flooding, fire, Adverse weather conditions i.e. high winds (structural damage), snow Problems with the supply chain Power failure Water supply failure Fuel shortage Business Continuity Planning Policy v3 10

11 They may be internally created e.g. Communication disruptions i.e telephone, Equipment failure Network or hardware failure. Staff / skill shortage 6.7 Continuity Planning Strategy The strategy will require Business Continuity and Recovery Plans to eliminate the high risk factors and attempt to reduce the medium risk factors, identified as part of the BIA process referred to above. The strategy may accept the low risk factors. Planning considerations can include: People skills i.e. identify key staff and required skills; consider training requirements to strengthen staff flexibility, document processes, etc. Information regular computer back ups, off site storage, scanning key documents, battle box! etc. Space internal solution, alternative sites, etc. Training requirements staff will need to be familiar with the Business Continuity Plan specific to their activity. In every instance during the BIA process there will be a need for managers to conduct a cost benefit analyses between the cost of reducing the risk, the benefit achieved and the effort involved in preparing a contingency plan. 6.8 Review of Business Continuity Plans To ensure a programme to regularly review the Corporate and Clinical Directorate Business Continuity Plans. Validation and maintenance of existing plans is essential and needs to be conducted on a regular basis to ensure that the plans remain fit for purpose Risk Assessments Business Continuity Planning and subsequent reviews focuses Managers attention to the risks that might impact on the delivery of their services. Managers should also take notice of indicators of risk identified through other internal mechanisms, such as: Adverse incident reporting Security reports Fire reports Health and Safety reports Accident reports Business Continuity Planning Policy v3 11

12 7. Training Adequate training will be provided for staff to effectively adhere to the requirements of this policy in accordance with the programme identified at Appendix Equality and Diversity The Trust is committed to ensuring that, as far is reasonably practicable, the way we provide services to the public and the way we treat our staff reflects their individual needs and does not discriminate against individuals or groups on any grounds. This policy has been appropriately assessed. 9. Monitoring compliance with the policy Standard process/ issue Monitoring and Audit Method By Committee Frequency The effectiveness of this policy will be monitored through the BSDC committee with annual assurance being provided to the Trust board via the MIPG annual board paper. Board paper Head of Facilities BSDC/ MIPG board paper Annual 10. Consultation and review of this policy This policy has been reviewed in consultation with the Equality and Diversity Co ordinator, Counter Fraud Specialist and Risk Management Team. 11. Implementation of policy (including raising awareness) This policy will be circulated by the Trust Secretary via the Trust e mail system and will be available on the trust intranet for all staff to access. The policy will also be made freely available to the public via the Trusts internet page. Managers will be made aware of the policy during subsequent BCP plan reviews. 12. References Planning for NHS resilience: interim strategic national guidance for NHS organisations issued June Business Continuity Planning Policy v3 12

RISK MANAGEMENT POLICY. Version 3

RISK MANAGEMENT POLICY. Version 3 RISK MANAGEMENT POLICY Version 3 Version: Version 3 Version 3 Authors: Liz Hollman, Mary Klaus, Sarah Langan-Hart Approved by: Healthcare Governance Committee Trust Board Approved date: May 2009 Review

More information

Risk Management Strategy

Risk Management Strategy Risk Management Strategy This section is to be completed by the Policy Custodian Name of Originator: Name of Responsible Committee / Individual: ECCG Clinical Commissioning Group Quality & Safety Committee

More information

Complaints Policy. Controlled Document Number: Version Number: 6 Controlled Document Sponsor: Controlled Document Lead: Approved By:

Complaints Policy. Controlled Document Number: Version Number: 6 Controlled Document Sponsor: Controlled Document Lead: Approved By: Complaints Policy CONTROLLED DOCUMENT CATEGORY: CLASSIFICATION: PURPOSE Controlled Document Number: Version Number: 6 Controlled Document Sponsor: Controlled Document Lead: Approved By: Policy Governance

More information

Hazard Identification, Risk Assessment and Management Procedure. Documentation Control

Hazard Identification, Risk Assessment and Management Procedure. Documentation Control Hazard Identification, Risk Assessment and Management Procedure Reference: Date approved: Approving Body: Implementation Date: Version: 3 Documentation Control GG/CM/007 Trust Board Supersedes: Version

More information

Board of Directors 24 October 2014

Board of Directors 24 October 2014 Board of Directors 24 October 2014 AGENDA ITEM: Item 16 PRESENTED BY: Richard Jones, Trust Secretary & Head of Governance PREPARED BY: DATE PREPARED: 19 September 2014 Richard Jones, Trust Secretary &

More information

South West Lincolnshire NHS Clinical Commissioning Group Business Continuity Policy

South West Lincolnshire NHS Clinical Commissioning Group Business Continuity Policy South West Lincolnshire NHS Clinical Commissioning Group Business Continuity Policy Reference No: CG 01 Version: Version 1 Approval date 18 December 2013 Date ratified: 18 December 2013 Name of Author

More information

Risk Management: Coordinated activities to direct and control an organisation with regard to risk.

Risk Management: Coordinated activities to direct and control an organisation with regard to risk. POLICY CG01 RISK MANAGEMENT Document Control Statement This Policy is maintained by the Governance and Organisational Strategy. Any printed copy may not be up to date and you are advised to check the electronic

More information

BUSINESS CONTINUITY POLICY

BUSINESS CONTINUITY POLICY BUSINESS CONTINUITY POLICY Last Review Date Approving Body n/a Audit Committee Date of Approval 9 th January 2014 Date of Implementation 1 st February 2014 Next Review Date February 2017 Review Responsibility

More information

NORTH HAMPSHIRE CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY MANAGEMENT POLICY AND PLAN (COR/017/V1.00)

NORTH HAMPSHIRE CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY MANAGEMENT POLICY AND PLAN (COR/017/V1.00) NORTH HAMPSHIRE CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY MANAGEMENT POLICY AND PLAN (COR/017/V1.00) Subject and version number of document: Serial Number: Business Continuity Management Policy

More information

BUSINESS CONTINUITY MANAGEMENT POLICY

BUSINESS CONTINUITY MANAGEMENT POLICY BUSINESS CONTINUITY MANAGEMENT POLICY AUTHORISED BY: DATE: Andy Buck Chief Executive March 2011 Ratifying Committee: NHS Rotherham Board Date Agreed: Issue No: NEXT REVIEW DATE: 2013 1 Lead Director John

More information

Risk Management Policy and Process Guide

Risk Management Policy and Process Guide Risk Management Policy and Process Guide Status: pending Next review date: December 2015 Page 1 Information Reader Box Directorate Medical Nursing Patients & Information Commissioning Operations (including

More information

Quality and Engagement Sub Committee

Quality and Engagement Sub Committee Quality and Engagement Sub Committee 12 June 2012 Corporate Risk Register and Risk Management Strategy Executive Summary As part of authorisation, Blackpool Clinical Commissioning Group (CCG) must identify

More information

RISK MANAGEMENT STRATEGY 2014-17

RISK MANAGEMENT STRATEGY 2014-17 RISK MANAGEMENT STRATEGY 2014-17 DOCUMENT NO: Lead author/initiator(s): Contact email address: Developed by: Approved by: DN128 Head of Quality Performance Julia.sirett@ccs.nhs.uk Quality Performance Team

More information

Business Continuity Policy and Business Continuity Management System

Business Continuity Policy and Business Continuity Management System Business Continuity Policy and Business Continuity Management System Summary: This policy sets out the structure for ensuring that the PCT has effective Business Continuity Plans in place in order to maintain

More information

A risk matrix for risk managers

A risk matrix for risk managers A risk matrix for risk managers January 008 Contents Introduction Guidance on consequence scoring 8 Guidance on likelihood scoring 0 Risk scoring and grading Relationship with incident scoring Conclusion

More information

Business Continuity Management Policy

Business Continuity Management Policy Business Continuity Management Policy Business Continuity Policy Version 1.0 1 Version control Version Date Changes Author 0.1 April 13 1 st draft PH 0.2 June 13 Amendments in line with guidance PH 0.3

More information

Business Continuity Policy

Business Continuity Policy Page 1 of 16 Business Continuity Policy Issue Date: Aug 2013 Document Number: 00241 Prepared by: Business Management and Continuity Senior Manager Next Review Date: April 2014 Page 2 of 16 NHS England

More information

BUSINESS CONTINUITY MANAGEMENT FRAMEWORK

BUSINESS CONTINUITY MANAGEMENT FRAMEWORK BUSINESS CONTINUITY MANAGEMENT FRAMEWORK Document Author: Civil Contingencies Service - Authorised by the CCS Joint Management Board - Version 1.0. Issued December 2012 Page 1 FRAMEWORK STATEMENT Business

More information

Waveney Lower Yare & Lothingland Internal Drainage Board Risk Management Strategy and Policy

Waveney Lower Yare & Lothingland Internal Drainage Board Risk Management Strategy and Policy Waveney Lower Yare & Lothingland Internal Drainage Board Risk Management Strategy and Policy Page: 1 Contents 1. Purpose, Aims & Objectives 2. Accountabilities, Roles & Reporting Lines 3. Skills & Expertise

More information

Business Continuity Management Policy and Plan

Business Continuity Management Policy and Plan Business Continuity Management Policy and Plan 1 Page No: Contents 1.0 Introduction 3 2.0 Purpose 3 3.0 Definitions 4 4.0 Roles, Duties & Responsibilities 4 4.1 Legal And Statutory Duties, Responsibilities

More information

Risk Management Policy

Risk Management Policy Risk Management Policy Effective from 4 July 2015 Version Number: 2.1 Author: Director of Planning Planning Directorate Document Control Information Status and reason for development Revised updating the

More information

Business Continuity (Policy & Procedure)

Business Continuity (Policy & Procedure) Business Continuity (Policy & Procedure) Publication Scheme Y/N Can be published on Force Website Department of Origin Force Operations Policy Holder Ch Supt Head of Force Ops Author Business Continuity

More information

Risk Management and Risk Assessment Policy

Risk Management and Risk Assessment Policy SharePoint Location Non-clinical Policies and Guidelines SharePoint Index Directory 3.0 Corporate Sub Area 3.1 Risk and Health & Safety Documents Key words (for search purposes) Risk, Risk Management,

More information

Bedford Group of Drainage Boards

Bedford Group of Drainage Boards Bedford Group of Drainage Boards Risk Management Strategy Risk Management Policy January 2010 1 Contents 1. Purpose, Aims & Objectives 2. Accountabilities, Roles & Reporting Lines 3. Skills & Expertise

More information

BUSINESS CONTINUITY PLANNING

BUSINESS CONTINUITY PLANNING BUSINESS CONTINUITY PLANNING INDEX Description Page Index 1 Template 1 - Plan Version Control 2 Background 3 Purpose of Business Continuity Plan 3 Roles and Responsibilities 3 Complimentary Links 4 Service/

More information

Business Continuity Business Continuity Management Policy

Business Continuity Business Continuity Management Policy Business Continuity Business Continuity Management Policy : Date of Issue: 28 January 2009 Version no: 1.1 Review Date: January 2010 Document Owner: Patricia Hughes Document Authoriser: Tony Curtis 1 Version

More information

The Newcastle upon Tyne Hospitals NHS Foundation Trust. Risk Register - Policy for Management and Use

The Newcastle upon Tyne Hospitals NHS Foundation Trust. Risk Register - Policy for Management and Use The Newcastle upon Tyne Hospitals NHS Foundation Trust Risk Register - Policy for Management and Use Version No.: 4.1 Effective From: 20 June 2013 Expiry Date: 31 May 2016 Date Ratified: 17 June 2013 Ratified

More information

1.0 Policy Statement / Intentions (FOIA - Open)

1.0 Policy Statement / Intentions (FOIA - Open) Force Policy & Procedure Reference Number Business Continuity Management D269 Policy Version Date 23 July 2015 Review Date 23 July 2016 Policy Ownership Portfolio Holder Links or overlaps with other policies

More information

BUSINESS CONTINUITY POLICY RM03

BUSINESS CONTINUITY POLICY RM03 BUSINESS CONTINUITY POLICY RM03 Applies to: All NHS LA employees, contractors, secondees and consultants, contractors and/or any other parties who will carry out duties on behalf of the NHS LA Version:

More information

Business Continuity Management Policy and Framework

Business Continuity Management Policy and Framework Management Policy and Framework Version: Produced by: Date Produced: Approved by: Updated: 7 University Manager with the assistance of the Operational Group 11 th March 2010 Steering Group (14 December

More information

Business Continuity Policy

Business Continuity Policy Business Continuity Policy Page 1 of 15 Business Continuity Policy First published: Amendment record Version Date Reviewer Comment 1.0 07/01/2014 Debbie Campbell 2.0 11/07/14 Vicky Ryan Updated to include

More information

Business Continuity Management

Business Continuity Management Business Continuity Management Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not

More information

Risk Management Policy

Risk Management Policy K Risk Management Policy Reference Number Version Status Executive Lead(s) Name and Job Title Author(s) Name and Job Title 52 6 Current Neil Riley Trust Secretary Andy Challands Assurance Manager Approval

More information

Business Continuity Policy

Business Continuity Policy Business Continuity Policy Summary: This policy sets out the structure for ensuring that the PCT has effective Business Continuity Plans in place in order to maintain its essential business functions during

More information

Business Continuity Management

Business Continuity Management Business Continuity Management Policy Statement & Strategy July 2009 Basildon District Council Business Continuity Management Policy Statement The Council is committed to ensuring robust and effective

More information

BUSINESS CONTINUITY POLICY. UHB 050 Version No: 4 Previous Trust / LHB Ref No: Interim Civil Contingencies and Emergency Planning Manager

BUSINESS CONTINUITY POLICY. UHB 050 Version No: 4 Previous Trust / LHB Ref No: Interim Civil Contingencies and Emergency Planning Manager Reference No: BUSINESS CONTINUITY POLICY UHB 050 Version No: 4 Previous Trust / LHB Ref No: N/A Documents to read alongside this Policy N/A Classification of document: Area for Circulation: Author: Executive

More information

BUSINESS CONTINUITY MANAGEMENT POLICY

BUSINESS CONTINUITY MANAGEMENT POLICY BUSINESS CONTINUITY MANAGEMENT POLICY Version No: 1 Issue Status: awaiting Trust Board approval Date of Ratification: 11th April 2012 Ratified by: Risk Management Committee Policy Author(s): Stuart Coalwood

More information

Risk Management Policy and Assurance Framework

Risk Management Policy and Assurance Framework Risk Management Policy and Assurance Framework March 2015 Author: Responsibility: Janet Young, Governance & Risk Manager All Staff should adhere to this policy Effective Date: March 2015 Review Date: April

More information

Coping with a major business disruption. Some practical advice

Coping with a major business disruption. Some practical advice Coping with a major business disruption Some practical advice Coping with a major business disruption What is business continuity? Business continuity planning (BCP) is a management process that helps

More information

Business Continuity Policy & Plans

Business Continuity Policy & Plans Agenda Item 8.3a SNCCG Governing Body 11.03.2014 Business Continuity Policy & Plans Ref Number: Version: 1 Status: Pending Approval Author: A Brown Approval body Governing Body Date Approved Date Issued

More information

Policy for the Investigation of Incidents, Complaints and Claims, including Analysis and Improvement

Policy for the Investigation of Incidents, Complaints and Claims, including Analysis and Improvement Policy for the Investigation of Incidents, Complaints and Claims, including Analysis and Improvement DOCUMENT CONTROL Version: 3 Ratified by: Risk Management Sub Group Date Ratified: 15 January 2013 Name

More information

River Stour (Kent) Internal Drainage Board Risk Management Strategy and Policy

River Stour (Kent) Internal Drainage Board Risk Management Strategy and Policy River Stour (Kent) Internal Drainage Board Risk Management Strategy and Policy Page: 1 Contents 1. Purpose, Aims & Objectives 2. Accountabilities, Roles & Reporting Lines 3. Skills & Expertise 4. Embedding

More information

Business Continuity Management Policy

Business Continuity Management Policy Business Continuity Management Policy May 2009 Document Document drafted by Office of Quality and Risk Reference Number OQR032 Document approved by Ms. E. Dunne, Head of Quality and Risk Revision Number

More information

Business Continuity Management Policy and Plan

Business Continuity Management Policy and Plan Business Continuity Management Policy and Plan Version No Author Date of Update 0.3 Allan Jude and Charmaine Grundy 05/06/2015 1 P a g e Contents Contents... 2 1. Introduction... 3 2. Purpose... 4 3. Definitions...

More information

Essex Clinical Commissioning Groups. Business Continuity Management System. Business Impact Analysis Process

Essex Clinical Commissioning Groups. Business Continuity Management System. Business Impact Analysis Process Essex Clinical Commissioning Groups Essex Clinical Commissioning Groups Business Continuity Management System Business Impact Analysis Process Policy Author: Daniel Hale - Head of Emergency Planning Version:

More information

Risk Assessment Tool and Guidance (Including guidance on application)

Risk Assessment Tool and Guidance (Including guidance on application) Risk Assessment Tool and Guidance (Including guidance on application) Document reference number Revision number OQR012 Document developed by 5 Document approved by Revision date October 2011 Responsibility

More information

NOT PROTECTIVELY MARKED BUSINESS CONTINUITY. Specialist Operations Contingency Planning Business Continuity Manager 17.09.12

NOT PROTECTIVELY MARKED BUSINESS CONTINUITY. Specialist Operations Contingency Planning Business Continuity Manager 17.09.12 POLICY BUSINESS CONTINUITY Policy owners Policy holder Author Head of Services Specialist Operations Contingency Planning Business Continuity Manager Policy No. 132 Approved by Legal Services 17.09.12

More information

Business Continuity Plan Toolkit

Business Continuity Plan Toolkit Business Continuity Plan Toolkit March 2015 1 Contents The Template instructions for use... 2 Introduction... 3 What is the purpose of this toolkit?... 3 Why do you need a Business Continuity Plan?...

More information

NHS Lancashire North CCG Business Continuity Management Policy and Plan

NHS Lancashire North CCG Business Continuity Management Policy and Plan Agenda Item 12.0. NHS Lancashire North CCG Business Continuity Management Policy and Plan Version 2 Page 1 of 25 Version Control Version Reason for update 1.0 Draft for consideration by Executive Committee

More information

Business Continuity Policy

Business Continuity Policy Business Continuity Policy 1 NHS England INFORMATION READER BOX Directorate Medical Commissioning Operations Patients and Information Nursing Trans. & Corp. Ops. Commissioning Strategy Finance Publications

More information

NHS Hardwick Clinical Commissioning Group. Business Continuity Policy

NHS Hardwick Clinical Commissioning Group. Business Continuity Policy NHS Hardwick Clinical Commissioning Group Business Continuity Policy Version Date: 26 January 2016 Version Number: 2.0 Status: Approved Next Revision Due: January 2017 Gordon Stevens MBCI Corporate Assurance

More information

CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT

CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT JANUARY 2008 GUIDELINE ON BUSINESS CONTINUITY GUIDELINE CBK/PG/14

More information

Risk Management Policy and Framework

Risk Management Policy and Framework Risk Management Policy and Framework December 2014 phone 1300 360 605 08 89589500 email info@centraldesert.nt.gov.au location 1Bagot Street Alice Springs NT 0870 post PO Box 2257 Alice Springs NT 0871

More information

AGENDA ITEM NO: 13.0. Meeting Title/Date: Governing Body - 21 July 2015. LNCCG Risk Management Strategy and Policy

AGENDA ITEM NO: 13.0. Meeting Title/Date: Governing Body - 21 July 2015. LNCCG Risk Management Strategy and Policy AGENDA ITEM NO: 13.0. Meeting Title/Date: Governing Body - 21 July 2015 Report Title: Paper Prepared By: Executive Sponsor: Committees where Paper Previously Presented: Background Paper(s): LNCCG Risk

More information

Risk Management Strategy

Risk Management Strategy Risk Management Strategy Version: 8 Approved by: Quality and Governance Committee Date approved: 31 July 2014 Ratified by: Trust Board of Directors Date ratified: Name of originator/author: Head of Patient

More information

Essex Clinical Commissioning Groups. Business Continuity Management System. Business Impact Analysis Datasheet

Essex Clinical Commissioning Groups. Business Continuity Management System. Business Impact Analysis Datasheet Item 013.2b Essex Clinical Commissioning Groups Business Continuity Management System Business Impact Analysis Datasheet BIA Author: BIA Owner: Version: Daniel Hale - Head of Emergency Planning Draft Date

More information

Risk Assessment Tool and Guidance (Including guidance on application)

Risk Assessment Tool and Guidance (Including guidance on application) Risk Assessment Tool and Guidance (Including guidance on application) June 2008 Document Reference Number OQR012 Document Drafted By Office of Quality and Risk Revision Number 4 Document Ms. Edwina Dunne,

More information

Risk Management Strategy - Supplement 1: Procedure for Production of Risk Registers

Risk Management Strategy - Supplement 1: Procedure for Production of Risk Registers This is an official Northern Trust policy and should not be edited in any way Risk Management Strategy - Supplement 1: Procedure for Production of Risk Registers Reference Number: NHSCT/12/557 Target audience:

More information

Policy for Care Quality Commission Essential standards of quality and safety self assessment and assurance process

Policy for Care Quality Commission Essential standards of quality and safety self assessment and assurance process Policy No: RM76 Version: 1.1 Name of Policy: Essential standards of quality and safety self assessment and assurance process Effective From: 25/04/2013 Date Ratified 15/03/2013 Ratified Patient, Quality,

More information

WEST YORKSHIRE FIRE & RESCUE SERVICE. Business Continuity Management Strategy

WEST YORKSHIRE FIRE & RESCUE SERVICE. Business Continuity Management Strategy WEST YORKSHIRE FIRE & RESCUE SERVICE Business Continuity Management Strategy Date Issued: 12 November 2012 Review Date: 12 November 2015 Version Control Version Number Date Author Comment 0.1 June 2011

More information

Business Continuity Management For Small to Medium-Sized Businesses

Business Continuity Management For Small to Medium-Sized Businesses Business Continuity Management For Small to Medium-Sized Businesses Produced by NORMIT and Norfolk County Council Resilience Team For an electronic copy of this document visit www.normit.org Telephone

More information

39 GB Guidance for the Development of Business Continuity Plans

39 GB Guidance for the Development of Business Continuity Plans 39 GB Guidance for the Development of Business Continuity Plans Policy number: Version 2.2 Approved by Name of author/originator Owner (director) 39 GB Executive Committee Date of approval August 2014

More information

Business Continuity Policy

Business Continuity Policy Business Continuity Policy Ref. No. TP/028 Title: Business Continuity Policy Page 1 of 15 DOCUMENT PROFILE and CONTROL. Purpose of the document: Provides an overview of the London Ambulance Service NHS

More information

BUSINESS CONTINUITY MANAGEMENT POLICY

BUSINESS CONTINUITY MANAGEMENT POLICY This document is uncontrolled once printed. Please check on the CCG s Intranet site for the most up to date version BUSINESS CONTINUITY MANAGEMENT POLICY DOCUMENT CONTROL Type of Document Document Title

More information

Business Continuity Management (BCM) Policy

Business Continuity Management (BCM) Policy Business Continuity Management (BCM) Policy Reference number: Corporate 042 Title: Business Continuity Management (BCM) Policy Version number: Version 2 Policy Approved by: LLR PCT Cluster Board Date of

More information

BUSINESS CONTINUITY PLAN

BUSINESS CONTINUITY PLAN MEETING DATE: 10 April 2014 AGENDA ITEM NUMBER: Item 7.6.2 AUTHOR: JOB TITLE: DEPARTMENT: Julie Killingbeck/Catherine Wylie Relationship Manager Commissioning/Director Quality and Assurance NHS North Lincolnshire

More information

EMERGENCY PREPAREDNESS POLICY

EMERGENCY PREPAREDNESS POLICY EMERGENCY PREPAREDNESS POLICY CONTROLLED DOCUMENT CATEGORY: CLASSIFICATION: Policy Emergency Planning PURPOSE This document sets out the strategic framework for the management of emergency preparedness

More information

Shepway District Council Risk Management Policy

Shepway District Council Risk Management Policy Shepway District Council Risk Management Policy Contents Section 1 Risk Management Policy... 3 1. Updates and amendments... 3 2. Definition... 3 3. Policy statement... 3 4. Objectives... 3 Section 2 Risk

More information

Risk Assessment and Risk Register Policy. Contents

Risk Assessment and Risk Register Policy. Contents Classification: Policy Lead Author: Paul Dodd Head of risk management Additional author(s): N/A Authors Division: Corporate Unique ID: RM6(06) Issue number: 3 Expiry Date: January 2017 Contents Section

More information

Risk Management Guide

Risk Management Guide Risk Management Guide Page(s) Introduction 3 The 5 steps to identifying risk 4 Risk Management Process - Step 1 5 Identify - Step 2 Assess Step 3 5-6 6 Control - Step 4 6 Monitor and Review -Step 5 6 Risk

More information

Risk Management Policy. Document author Assured by Review cycle. Audit and Risk Committee. 1. Introduction Purpose or aim Scope...

Risk Management Policy. Document author Assured by Review cycle. Audit and Risk Committee. 1. Introduction Purpose or aim Scope... Risk Management Policy Board library reference Document author Assured by Review cycle P136 Interim Head of Risk and Legal Services Audit and Risk Committee 3 Years This document is version controlled.

More information

Solihull Clinical Commissioning Group

Solihull Clinical Commissioning Group Solihull Clinical Commissioning Group Business Continuity Policy Version v1 Ratified by SMT Date ratified 24 February 2014 Name of originator / author CSU Corporate Services Review date Annual Target audience

More information

Version: 1.0. Effective From: 24/06/2013

Version: 1.0. Effective From: 24/06/2013 Policy No: OP77 Version: 1.0 Name of Policy: Web Management Policy Effective From: 24/06/2013 Date Ratified 06/12/2012 Ratified Business and Service Development Committee Review Date 01/12/2014 Sponsor

More information

V1.0 - Eurojuris ISO 9001:2008 Certified

V1.0 - Eurojuris ISO 9001:2008 Certified Risk Management Manual V1.0 - Eurojuris ISO 9001:2008 Certified Section Page No 1 An Introduction to Risk Management 1-2 2 The Framework of Risk Management 3-6 3 Identification of Risks 7-8 4 Evaluation

More information

Business Continuity Management Policy

Business Continuity Management Policy Governance: Business Committee Policy Owner: Chief Superintendent, Corporate Services Department: Corporate Services Policy Number: 002 Version: 3.0 Policy Writer: Business Continuity Co-ordinator Effective

More information

Appendix 2 - Leicester City Council s Business Continuity Management Policy Statement and Strategy 2015. Business Continuity Policy Statement 2015

Appendix 2 - Leicester City Council s Business Continuity Management Policy Statement and Strategy 2015. Business Continuity Policy Statement 2015 Appendix 2 - Leicester City Council s Business Continuity Management Policy Statement and Strategy 2015 Business Continuity Policy Statement 2015 This Policy sets the direction for Business Continuity

More information

Bridgend County Borough Council. Corporate Risk Management Policy

Bridgend County Borough Council. Corporate Risk Management Policy Bridgend County Borough Council Corporate Risk Management Policy December 2014 Index Section Page No Introduction 3 Definition of risk 3 Aims and objectives 4 Strategy 4 Accountabilities and roles 5 Risk

More information

BUSINESS CONTINUITY MANAGEMENT POLICY

BUSINESS CONTINUITY MANAGEMENT POLICY BUSINESS CONTINUITY MANAGEMENT POLICY A GUIDE TO BUSINESS CONTINUITY AND SERVICE RECOVERY PLANNING Version 1.1 Ratified by BHR CCGs Governing Bodies Date ratified September 2013 Name of Director Lead Marie

More information

RISK MANAGEMENT STRATEGY

RISK MANAGEMENT STRATEGY RISK MANAGEMENT STRATEGY 1 Introduction The purpose of this document is to outline a which facilitates the effective recognition and management of risks facing the University. The Combined Code on Corporate

More information

Information Governance Strategy

Information Governance Strategy Information Governance Strategy ONCE PRINTED OFF, THIS IS AN UNCONTROLLED DOCUMENT. PLEASE CHECK THE INTRANET FOR THE MOST UP TO DATE COPY Target Audience: All staff employed or working on behalf of the

More information

Risk Management Strategy

Risk Management Strategy Authors Name & Title: Joan Matthews Risk Manager, Hazel Holmes Director of Nursing Scope: Trust Wide Classification: Non Clinical Strategy Replaces:, v3.1 To be read in conjunction with the following documents:

More information

Corporate Risk Management Policy

Corporate Risk Management Policy Corporate Risk Management Policy Managing the Risk and Realising the Opportunity www.reading.gov.uk Risk Management is Good Management Page 1 of 19 Contents 1. Our Risk Management Vision 3 2. Introduction

More information

BSO Board Director of Human Resources & Corporate Services Business Continuity Policy. 28 February 2012

BSO Board Director of Human Resources & Corporate Services Business Continuity Policy. 28 February 2012 To: From: Subject: Status: Date of Meeting: BSO Board Director of Human Resources & Corporate Services Business Continuity Policy For Approval 28 February 2012 The Board is asked to agree the attached

More information

NHS ISLE OF WIGHT CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY POLICY

NHS ISLE OF WIGHT CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY POLICY NHS ISLE OF WIGHT CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY POLICY AUTHOR/ APPROVAL DETAILS Document Author Written By: Human Resources Authorised Signature Authorised By: Helen Shields Date: 20

More information

Business Continuity Management

Business Continuity Management Business Continuity Management Version 1 approved by SMG December 2013 Business Continuity Policy Version 1 1 of 9 Business Continuity Management Summary description: This document provides the rationale

More information

WHS Risk Assessment and Control Form

WHS Risk Assessment and Control Form WHS Risk Assessment and Control Form Step 1: Who has conducted the Risk Assessment Risk Assessment completed by (name): Staff / Student Number: Signature: Date: Step 4: Documentation and initial approval

More information

South Oxfordshire District Council and Vale of White Horse District Council Risk Management Strategy

South Oxfordshire District Council and Vale of White Horse District Council Risk Management Strategy 2013 2016 South Oxfordshire District Council and Vale of White Horse District Council Risk Management Strategy 2013-2016 1 1 Context 3 SCOPE 3 WHAT IS RISK MANAGEMENT? 3 LOCAL AND NATIONAL DRIVERS 3 Business

More information

Birmingham CrossCity Clinical Commissioning Group. Business Continuity Management Policy

Birmingham CrossCity Clinical Commissioning Group. Business Continuity Management Policy Birmingham CrossCity Clinical Commissioning Group Business Continuity Management Policy Version V1.0 Ratified by Operational Development Group Date ratified 6 th November 2014 Name of originator / author

More information

Risk Management Policy

Risk Management Policy Risk Management Policy Responsible Officer Author Ben Bennett, Business Planning & Resources Director Julian Lewis, Governance Manager Date effective from December 2008 Date last amended December 2012

More information

Business Continuity Management Framework 2014 2017

Business Continuity Management Framework 2014 2017 Business Continuity Management Framework 2014 2017 Blackpool Council Business Continuity Framework V3.0 Page 1 of 13 CONTENTS 1.0 Forward 03 2.0 Administration 04 3.0 Policy 05 4.0 Business Continuity

More information

Policy Document Control Page

Policy Document Control Page Policy Document Control Page Title Title: Information Governance Policy Version: 5 Reference Number: CO44 Keywords: Information Governance Supersedes Supersedes: Version 4 Description of Amendment(s):

More information

University Emergency Management Plan

University Emergency Management Plan University Emergency Management Plan This plan has been designed to be consistent with the format of the Emergency Action Plans held by the departments and buildings of the University. This will enable

More information

Risk Management. Policy

Risk Management. Policy Policy Risk Management Endorsed: 26 February 2014 Brief description The GPC Risk Management Policy and its supporting standards and procedures provide a framework to ensure that risks arising from our

More information

CONTROLLED DOCUMENT. Number: Version Number: 4. On: 25 July 2013 Review Date: June 2016 Distribution: Essential Reading for: Information for:

CONTROLLED DOCUMENT. Number: Version Number: 4. On: 25 July 2013 Review Date: June 2016 Distribution: Essential Reading for: Information for: CONTROLLED DOCUMENT Risk Management Strategy and Policy CATEGORY: CLASSIFICATION: PURPOSE: Controlled Number: Document Version Number: 4 Controlled Sponsor: Controlled Lead: Approved By: Document Document

More information

abcdefghijklmnopqrstu

abcdefghijklmnopqrstu abcdefghijklmnopqrstu Business Continuity A Framework for NHS Scotland Strategic Guidance for NHS Organisations in Scotland 1 Contents 1. Introduction 4 1.1 Business Continuity Overview 5 2. Roles and

More information

Business Continuity Policy

Business Continuity Policy Business Continuity Policy Reference Number: 243 Author & Title: Siân Dyson Resilience Manager Responsible Director: Chief Operating Officer Review Date: 29 May 2018 Ratified by: Francesca Thompson Chief

More information

RISK MANAGEMENT STRATEGY

RISK MANAGEMENT STRATEGY RISK MANAGEMENT STRATEGY Version 4 Document History/Progress Author Version 1: Jill Henderson, Clinical Governance Coordinator Version 1 approved by: Trust Board 6th April 2004 Author Version 2 Dorothea

More information

Revenue Scotland. Risk Management Framework

Revenue Scotland. Risk Management Framework Revenue Scotland Risk Management Framework Contents 1. Introduction... 3 1.1 Overview of risk management... 3 2. Policy statement... 4 3. Risk management approach... 5 3.1 Risk management objectives...

More information

Emergency Response and Business Continuity Management Policy

Emergency Response and Business Continuity Management Policy Emergency Response and Business Continuity Management Policy Owner: John Duffy, Registrar & Secretary Last updated: September 2012 Version: 04 Document control Date Version Author Changes To be populated

More information

NHS Durham Dales, Easington and Sedgefield Clinical Commissioning Group. Business Continuity Plan

NHS Durham Dales, Easington and Sedgefield Clinical Commissioning Group. Business Continuity Plan NHS Durham Dales, Easington and Sedgefield Clinical Commissioning Group Business Continuity Plan Page 1 Review To be done annually Author Chief Operating Officer Reviewer Head of Corporate Services Version

More information