Information Governance Policy

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "Information Governance Policy"

Transcription

1 Author: Susan Hall, Information Governance Manager Owner: Fiona Jamieson, Assistant Director of Healthcare Governance Publisher: Compliance Unit Date of first issue: February 2005 Version: 5 Date of version issue: April 2013 Approved by: Executive Board Date approved: 20 th March 2013 Review date: March 2015 Target audience: General Relevant Regulations Information Governance Toolkit and Standards Executive Summary This Policy sets out the guidelines for York Teaching Hospital NHS Foundation Trust staff to effectively manage information in a secure and accurate manner and in compliance with current legislation & NHS guidelines. Version 4, November 2012 Page 1 of 21

2 Version History Log This area should detail the version history for this document. It should detail the key elements of the changes to the versions. Version Date Approved Version Author Status & Location Details of Significant Changes 1.0 December 2004 Susan Hall Archived Compliance Unit New Policy 2.0 February January 2007 (Approved by Fiona Jamieson) 4.0 January January 2013 Archived Compliance Unit Archived Compliance Unit Archived Staff Room Current Staff Room Joint Policy with Selby and York Primary Care Trust 1. Policy applied to York Hospitals Trust only. 2. Removed references to NHS Information Authority 3. Conformed to new Corporate Policy template 4. Updated list of related Policies at Appendix 1 Minor changes only to reflect new Committee structure Extended Policy statement. Changed to reflect organisational change, and new corporate template. Added volunteers to groups bound by Policy, and reference to possibility of dismissal for breaches. New section on Training. Version 4, November 2012 Page 2 of 21

3 Contents Section No. Heading Page Process Flowchart 4 1 Introduction and Scope 5 2 Definitions / Terms Used in Policy 5 3 Policy Statement 6 4 Equality Impact Assessment 9 5 Accountability 9 6 Consultation, Assurance and Approval Process 7 Review and Revision Arrangements 10 8 Dissemination and Implementation 11 9 Document Control including Archiving Arrangements 10 Monitoring Compliance and Effectiveness 11 Training Trust Associated Documentation External References 14 Appendix A Equality Impact Assessment Tool 15 Appendix B Checklist for Review and Approval 18 Appendix C Plan for Dissemination of Policy Version 4, November 2012 Page 3 of 21

4 Process flowchart Working with any of the following? Personal information eg patient and staff records Other confidential information eg commercially sensitive Corporate Information eg Policies, Reports Requirement Application Patients have access to information about their healthcare and options for treatment. Openness Non-confidential information on the Trust and its services is available to the public in compliance with the Freedom of Information Act. The Trust will follow clear guidelines when liaising with the press, patients or the public. Legal compliance The Trust ensures that identifiable personal information is protected in accordance with the Data Protection Act and Human Rights Act, and that staff observe their Common law Duty of Confidence. Staff are fully appraised of these and other legal and contractual responsibilities through the Statutory and Mandatory training programme, supported by documented policies and procedures. Information security A comprehensive Information Security Policy prescribes technical and organisational measures to reduce the risk of data loss, corruption or misuse. All reported incidents of actual or potential breaches of confidentiality or security will be investigated. Information quality assurance Data standards are clear and consistent and promote information quality and effective records management. Procedures are in place to ensure the accuracy of patient information on all systems and /or records that support the provision of care Version 4, November 2012 Page 4 of 21

5 1 Introduction and Scope Information is a vital asset, both in terms of the clinical management of individual service users and the efficient management of services and resources. It plays a key part in clinical governance, service planning and performance management. It is therefore of paramount importance to ensure that information is efficiently managed, and that appropriate policies, procedures and management accountability provide a robust governance framework for information management. This Information Governance policy provides an overview of the organisation s approach to information governance; a guide to the procedures in use; and details about the IG management structures within the organisation. This Policy applies to all staff of York Hospitals Foundation Trust. Compliance is also required of contractors, subcontractors and volunteers. 2 Definitions / Terms used in policy Information Governance: The NHS framework for handling information and records, promotes quality and security through provision of legal and best practice guidelines. IG is the foundation for high quality healthcare using information which is accurate, complete, up-to-date, and available to authorised professionals when and where needed. The Data Protection Act 1998 governs processing of data on identifiable living people. It places obligations on those who hold personal data, and gives rights to individual data subjects. Breaches of the DPA can result in financial penalties of up to 500, 000. The Freedom of Information Act 2000 provides public access to information held by public authorities, including NHS trusts. Personal and otherwise confidential information are exempt from disclosure. Information Security: Information Security includes technical and procedural means to protect information and information systems from unauthorised access, use, disclosure, disruption, modification or destruction. Version 4, November 2012 Page 5 of 21

6 Confidential Information: Privileged information, shared with only selected authorised people for furthering certain purposes, such as with a doctor for treatment of a medical condition, or a potential customer for entering into a business contract. The receiver of confidential information is generally prohibited from using it to take advantage of the giver. Everyone who works for the NHS is bound by a duty to protect confidential information. This duty: a. is a legal obligation derived from case law; b. is a requirement established within professional codes of conduct; and c. must be included within NHS employment contracts as a specific requirement linked to disciplinary procedures. 3 Policy Statement The Trust undertakes to implement information governance effectively and will ensure the following: Information will be protected against unauthorised access; Confidentiality of information will be assured; Integrity of information will be maintained; Information will be supported by the highest quality data; Regulatory and legislative requirements will be met; Business continuity plans will be produced, maintained and tested; Information governance training will be available to all staff as necessary to their role; All breaches of confidentiality and information security, actual or suspected, will be reported and investigated. This policy addresses the key elements of Information Governance: a) Openness b) Legal compliance c) Information security Version 4, November 2012 Page 6 of 21

7 d) Information quality assurance 3.1 Openness Non-confidential information on the Trust and its services will be made available to the public through a variety of media, in accordance with the Trust s values of openness The Trust will establish and maintain policies to ensure compliance with the Freedom of Information Act 2000 The Trust will undertake or commission annual assessments and audits of its policies and arrangements for openness Patients should have ready access to information relating to their own health care, their options for treatment and their rights as service users The Trust will have clear procedures and arrangements for liaison with the press and broadcasting media The Trust will have clear procedures and arrangements for handling queries from patients and the general public. 3.2 Legal Compliance The Trust regards all identifiable personal information relating to patients as confidential The Trust will undertake or commission annual assessments and audits of its compliance with legal requirements The Trust regards all identifiable personal information relating to staff as confidential except where national policy on accountability and openness requires otherwise The Trust will establish and maintain policies to ensure compliance with the Data Protection Act, Human Rights Act and the common law duty of confidentiality The Trust will establish and maintain policies for the controlled and appropriate sharing of patient information with other agencies, taking account of relevant legislation (e.g. Mental Capacity Act, Crime and Disorder Act, Children Act) Version 4, November 2012 Page 7 of 21

8 3.3 Information Security The Trust will establish and maintain policies for the effective and secure management of its information assets and resources The Trust will undertake or commission annual assessments and audits of its information and IT security arrangements The Trust will promote effective confidentiality and security practice to its staff through policies, procedures and training The Trust will establish and maintain incident reporting procedures and will monitor and investigate all reported instances of actual or potential breaches of confidentiality and security. 3.4 Information Quality Assurance The Trust will establish and maintain policies and procedures for information quality assurance and the effective management of records The Trust will undertake or commission annual assessments and audits of their information quality and records management arrangements Managers are expected to take ownership of, and seek to improve, the quality of information within their services Wherever possible, information quality should be assured at the point of collection Data standards will be set through clear and consistent definition of data items, in accordance with national standards The Trust will promote information quality and effective records management through policies, procedures/user manuals and training. 3.5 Other Related Issues Information Governance encompasses a wide range of initiatives, which are governed in the Trust by a developing body of policies and procedures. These are kept under Version 4, November 2012 Page 8 of 21

9 review in the light of changes to Information Governance requirements. A list of the key documents is given in Section 11: guidance is published and maintained on Staff Room. 4 Equality Impact Assessment The Trust aims to design and implement services, policies and measures that meet the diverse needs of our service, population and workforce, ensuring that none are placed at an unreasonable or unfair disadvantage over others. In the development of this policy, the Trust has considered its impact with regard to equalities legislation. The outcome of the Equality Impact Assessment is reported at Appendix A. 5 Accountability Acting on behalf of the Chief Executive, the lead Director for Information Governance is the Chief Nurse/Director of Infection Prevention and Control. Operational responsibility is delegated to the Assistant Director of Healthcare Governance. The Information Governance Group is responsible for overseeing the Information Governance work programme. Chaired jointly by the Medical Director and the Assistant Director of Healthcare Governance, the group will report into the Corporate Risk Management Group and Governance Committee. The Medical Director, as Caldicott Guardian, has lead responsibility at Board level for the protection, use and sharing of patient-identifiable information. The Director of Finance, as the Trust s Senior Information Risk Owner, oversees the organisation s information risk management policy and strategy. Working to the Assistant Director of Healthcare Governance, the Information Governance lead manager is responsible for developing policy and supporting compliance across the specialist areas (Records Management/Freedom of Information, Confidentiality/Data Protection etc). Responsibility for the implementation of the Information Governance standards is devolved to managers working Version 4, November 2012 Page 9 of 21

10 within the Directorates, although the IG Team will provide any appropriate advice and guidance to support local managers in this role. Fundamentally, every member of Trust staff is responsible for protecting the integrity and confidentiality of the information they work with. This is a common legal and contractual duty, set out in the Trust s Information Security Policy and reinforced for many staff groups by their professional Codes of Conduct. Breaches will be investigated and disciplinary action taken where appropriate, including dismissal for the most serious cases. 6 Consultation, Assurance and Approval Process 6.1 Consultation Process This Policy is based on legal and best practice standards issued by NHS Connecting for Health. The standards represent Department of Health Policy and compliance is mandatory. In York Teaching Hospital NHS Foundation Trust, this Policy was agreed by the then Information and Records Management Committee (now Information Governance Group) and Executive Board. 6.2 Quality Assurance Process Following consultation with stakeholders and relevant consultative committees, this policy was reviewed by the Trust s Quality Assurance group to ensure it meets the NHSLA standards for the production of procedural documents. 6.3 Approval Process Following completion of the Quality Assurance Process, this policy and any subsequent policy revisions will require the approval of the Information Governance Group and Corporate Risk Management Group. 7 Review and Revision Arrangements The date of review is given on the front cover sheet. Version 4, November 2012 Page 10 of 21

11 The Assistant Director of Healthcare Governance shall review the Policy at least every two years to ensure that it continues to meet the requirements of the law and guidance, and to protect the interests of the local health community. The Policy Manager will notify the author of the policy of the need for its review six months before the date of expiry. On reviewing this policy, all stakeholders identified in section 6 will be consulted as per the Trust s Stakeholder policy. Subsequent changes to this policy will be detailed on the version control sheet at the front of the policy and a new version number will be applied. Subsequent reviews of this policy will continue to require the approval of the appropriate committee as determined by the Policy for Development and Management of Policies. 8 Dissemination and Implementation 8.1 Dissemination Once approved, this revision will be made available to all staff working at and for York Teaching Hospital NHS Foundation Trust. It will be reported to staff through staff brief, and published on Staff Room in the Policies and Procedures area. This policy will be made available to Service Users and the public, on request, and in the format requested. For detail, see Dissemination Plan at Appendix C. 8.2 Implementation of Policies This overarching Policy statement is supported by detailed policies governing specific IG topics Information Security, Data Protection, Records Management etc, each associated with its own implementation plan. In addition, detailed Information Governance Staff Guides set out operational requirements by function (e.g. ) or topic area (e.g. Data Protection). Guidance materials will be issued to new starters attending introductory IT Core Access and CPD training. Support for implementation Version 4, November 2012 Page 11 of 21

12 is provided by the Information Governance Team via the annual IG Work Plan. 9 Document Control including Archiving Arrangements The register and archiving arrangements for policies will be managed by the Compliance Unit. To retrieve a former version of this policy the Compliance Unit should be contacted. 10 Monitoring Compliance With and the Effectiveness of Policies Compliance with the Policy is managed as follows: Evidence Monitoring /Who by Frequency a. In-year, progress against the Information Governance Improvement Plan b. Audit Report IG Toolkit evidence c. Assessment results (Toolkit submission) d. Compliance reviews Information Governance Group Corporate Risk Management Group Internal Audit External Audit NHS Connecting for Health Care Quality Commission Audit Commission Monitor Assistant Director of Healthcare Governance Quarterly Annually On direction of CfH Three times annually (July, October, March) Annually Rolling programme Version 4, November 2012 Page 12 of 21

13 e. Incident Reports Information Governance Group Quarterly f. SIRO Report Board of Directors Annually 10.2 Standards / Key Performance Indicators Information Governance Toolkit (NHS Connecting for Health) 11 Training In accordance with Information Governance Toolkit requirements, appropriate IG training is delivered to all staff on an annual basis. The IG training needs of particular staff groups will be identified through an annual IG Training Needs Analysis, linked to the corporate TNA. Corporate and local induction procedures, along with mandatory IT training, will introduce new starters to the main provisions of this policy. Existing staff will receive annual IG refresher training delivered as part of the Statutory and Mandatory programme. 12 Trust Associated Documentation Information Governance guidance for staff is published on Staff Room. Guidance documents include: Information Governance Staff Guides Series (Confidentiality, Data Protection, Safe Haven Guide etc) The following associated Policies are also available for reference on Staff Room: Information Security Policy Acceptable Use Policy Data Quality Policy Data Protection Policy Records Management Policy Freedom of Information Policy Version 4, November 2012 Page 13 of 21

14 Advice can also be obtained from the IG Team on 13 External References The Information Governance Toolkit can be viewed on the NHS Connecting for Health website at: nww.igt.connectingforhealth.nhs.uk The Information Commissioner is the national regulator for access to information. The IC s Office publishes news, penalty notices and guidance relating to Data Protection, Freedom of Information and related legislation. Website address: There is also the definitive guide to protection of patient information in the NHS: NHS Confidentiality Code of Practice Version 4, November 2012 Page 14 of 21

15 Appendix A: Equality Impact Assessment Tool To be completed when submitted to the appropriate committee for consideration and approval. Name of Policy: 1. What are the intended outcomes of this work? To inform staff how to effectively manage information in a secure and accurate manner. 2 Who will be affected? All staff and patients, enquirers. 3 What evidence have you considered? List any examples of good practice you have used in putting this policy together, ensuring consideration to the ability to implement the policy by the following groups has been given Principal model is national policy as represented in Connecting for Health s Information Governance Toolkit. The Policy is designed to protect the information rights of all people, including protected groups. a b c Disability In this and related policies, provision has been made for those who may lack capacity to consent in relation to information sharing and use. Sex This policy is inclusive and does not differentiate between people on the basis of this characteristic. Race This policy is inclusive and does not differentiate between people on the basis of this characteristic. d Age. This policy is inclusive and does not differentiate between people on the basis of this characteristic. e f Gender Reassignment This policy is inclusive and does not differentiate between people on the basis of this characteristic. Sexual Orientation This policy is inclusive and does not differentiate between people on the basis of this Version 4, November 2012 Page 15 of 21

16 characteristic. g Religion or Belief This policy is inclusive and does not differentiate between people on the basis of this characteristic. h Pregnancy and Maternity. This policy is inclusive and does not differentiate between people on the basis of this characteristic. i Carers This policy is inclusive and does not differentiate between people on the basis of this characteristic. j Other Identified Groups None 4. Engagement and Involvement a. Was this work subject to consultation? b. How have you engaged stakeholders in constructing the policy c. If so, how have you engaged stakeholders in constructing the policy Via consultation with Information Governance Group As above d. For each engagement activity, please state who was involved, how they were engaged and key outputs Medical Director / Caldicott Guardian, Senior Information Risk Owner and representatives of Departments and Directorates on the Information Governance Group Outputs = review, approval, systems for training and compliance monitoring 5. Consultation Outcome Now consider and detail below how the proposals impact on elimination of discrimination, harassment and victimisation, advance the equality of opportunity and promote good relations between groups a Eliminate discrimination, harassment and victimisation Makes information rights available to all b Advance Equality of Opportunity Makes information rights available to all Version 4, November 2012 Page 16 of 21

17 c Promote Good Relations Between Groups Encourages dialogue between Trust and service users d What is the overall impact? Information rights available to all Name of the Person who carried out this assessment: Susan Hall, Information Governance Manager Date Assessment Completed 2 nd December 2012 Name of responsible Director Libby McManus If you have identified a potential discriminatory impact of this procedural document, please refer it to the Equality and Diversity Committee, together with any suggestions as to the action required to avoid/reduce this impact. Version 4, November 2012 Page 17 of 21

18 Appendix B Checklist for Review and Approval To be completed and attached to any document which guides practice when submitted to the appropriate committee for consideration and approval. Title of document being reviewed: 1 Development and Management of Policies Is the title clear and unambiguous? Is it clear whether the document is a guideline, policy, protocol or procedures? 2 Rationale Are reasons for development of the document stated? 3 Development Process Is the method described in brief? Are individuals involved in the development identified? Do you feel a reasonable attempt has been made to ensure relevant expertise has been used? Is there evidence of consultation with stakeholders and users? Has an operational, manpower and financial resource assessment been undertaken? 4 Content Is the document linked to a strategy? Is the objective of the document clear? Is the target population clear and unambiguous? Are the intended outcomes described? /No/ Unsure Comments Version 4, November 2012 Page 18 of 21

19 Title of document being reviewed: Are the statements clear and unambiguous? 5 Evidence Base Is the type of evidence to support the document identified explicitly? Are key references cited? Are the references cited in full? Are local/organisational supporting documents referenced? 5a Quality Assurance Has the standard the policy been written to address the issues identified? Has QA been completed and approved? 6 Approval Does the document identify which committee/group will approve it? If appropriate, have the staff side committee (or equivalent) approved the document? 7 Dissemination and Implementation Is there an outline/plan to identify how this will be done? Does the plan include the necessary training/support to ensure compliance? 8 Document Control Does the document identify where it will be held? Have archiving arrangements for superseded documents been addressed? /No/ Unsure N/a Comments Version 4, November 2012 Page 19 of 21

20 Title of document being reviewed: 9 Process for Monitoring Compliance Are there measurable standards or KPIs to support monitoring compliance of the document? Is there a plan to review or audit compliance with the document? 10 Review Date Is the review date identified? Is the frequency of review identified? If so, is it acceptable? 11 Overall Responsibility for the Document Is it clear who will be responsible for coordinating the dissemination, implementation and review of the documentation? /No/ Unsure Comments Individual Approval If you are happy to approve this document, please sign and date it and forward to the chair of the committee/group where it will receive final approval. Name Fiona Jamieson Date 17 th January 2013 Signature Committee Approval If the committee is happy to approve this document, please sign and date it and forward copies to the person with responsibility for disseminating and implementing the document and the person who is responsible for maintaining the organisation s database of approved documents. Name Signature Cheryl Gaynor for Executive Board minutes show approval of Policy Date 20 th March 2013 Version 4, November 2012 Page 20 of 21

21 Appendix C Plan for dissemination of policy To be completed and attached to any document which guides practice when submitted to the appropriate committee for consideration and approval. Title of document: Date finalised: March 2013 Previous document in use? Dissemination lead Susan Hall Which Strategy does it relate to? Information Governance Strategy If yes, in what format and where? Document held by Healthcare Governance Directorate Proposed action to retrieve out of date copies of the document: Dissemination Grid Healthcare Governance Directorate will hold archive To be disseminated to: 1) All Staff 2) Method of dissemination who will do it? and when? Format (i.e. paper or electronic) Staff Briefing IG Team Next available Electronic Dissemination Record Date put on register / library On approval Review date March 2015 Disseminated to All via Staff Room Format (i.e. paper or electronic) Electronic Date Disseminated No. of Copies Sent N/A Contact Details / Comments No substantial change to communicate. Supporting IG Policies set out detailed requirements. Version 4, November 2012 Page 21 of 21

Record Management Policy

Record Management Policy Record Management Policy Author: Kate Ayres, Governance Facilitator Owner: Fiona Jamieson, Assistant Director of Healthcare Governance Publisher: Compliance Unit Date of first issue: March 2006 Version:

More information

INFORMATION GOVERNANCE STRATEGIC VISION, POLICY AND FRAMEWORK

INFORMATION GOVERNANCE STRATEGIC VISION, POLICY AND FRAMEWORK INFORMATION GOVERNANCE STRATEGIC VISION, POLICY AND FRAMEWORK Policy approved by: Assurance Committee Date: 3 December 2014 Next Review Date: December 2016 Version: 1.0 Information Governance Strategic

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY Information Governance Policy_v2.0_060913_LP Page 1 of 14 Information Reader Box Directorate Purpose Document Purpose Document Name Author Corporate Governance Guidance Policy

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY Directorate of Performance Assurance INFORMATION GOVERNANCE POLICY Reference: DCP074 Version: 2.5 This version issued: 27/03/15 Result of last review: Minor changes Date approved by owner (if applicable):

More information

INFORMATION GOVERNANCE OPERATING POLICY & FRAMEWORK

INFORMATION GOVERNANCE OPERATING POLICY & FRAMEWORK INFORMATION GOVERNANCE OPERATING POLICY & FRAMEWORK Log / Control Sheet Responsible Officer: Chief Finance Officer Clinical Lead: Dr J Parker, Caldicott Guardian Author: Associate IG Specialist, Yorkshire

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Policy ID IG02 Version: V1 Date ratified by Governing Body 27/09/13 Author South Commissioning Support Unit Date issued: 21/10/13 Last review date: N/A Next review date: September

More information

Information Governance Policy

Information Governance Policy Information Governance Policy REFERENCE NUMBER IG 101 / 0v3 May 2012 VERSION V1.0 APPROVING COMMITTEE & DATE Clinical Executive 4.9.12 REVIEW DUE DATE May 2015 West Lancashire CCG is committed to ensuring

More information

CORPORATE POLICY & PROCEDURE NO. 7 INFORMATION GOVERNANCE POLICY. December 2014

CORPORATE POLICY & PROCEDURE NO. 7 INFORMATION GOVERNANCE POLICY. December 2014 CORPORATE POLICY & PROCEDURE NO. 7 INFORMATION GOVERNANCE POLICY December 2014 DOCUMENT INFORMATION Author: Barbara Sansom Information Governance Manager Equality Impact Assessment Consultation & Approval

More information

1.5 The Information Governance Policy should be read in conjunction with the Information Governance Strategy.

1.5 The Information Governance Policy should be read in conjunction with the Information Governance Strategy. Title: Reference No: NHSNYYIG - 007 Owner: Author: INFORMATION GOVERNANCE POLICY Director of Standards First Issued On: September 2010 Latest Issue Date: February 2012 Operational Date: February 2012 Review

More information

INFORMATION GOVERNANCE STRATEGY

INFORMATION GOVERNANCE STRATEGY INFORMATION GOVERNANCE STRATEGY Page 1 of 10 Strategy Owner Valerie Penn, Head of Governance Strategy Author Caroline Law, Information Governance Project Manager Directorate Corporate Governance Ratifying

More information

All CCG staff. This policy is due for review on the latest date shown above. After this date, policy and process documents may become invalid.

All CCG staff. This policy is due for review on the latest date shown above. After this date, policy and process documents may become invalid. Policy Type Information Governance Corporate Standing Operating Procedure Human Resources X Policy Name CCG IG03 Information Governance & Information Risk Policy Status Committee approved by Final Governance,

More information

NHS Newcastle Gateshead Clinical Commissioning Group. Information Governance Strategy 2015/16

NHS Newcastle Gateshead Clinical Commissioning Group. Information Governance Strategy 2015/16 NHS Newcastle Gateshead Clinical Commissioning Group Information Governance Strategy 2015/16 Document Status Equality Impact Assessment Document Ratified/Approved By Approved No impact NHS Quality, Safety

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY Primary Intranet Location Information Management & Governance Version Number Next Review Year Next Review Month 7.0 2018 January Current Author Phil Cottis Author s Job Title

More information

MOORLAND SURGICAL SUPPLIES LTD INFORMATION GOVERNANCE POLICY

MOORLAND SURGICAL SUPPLIES LTD INFORMATION GOVERNANCE POLICY MOORLAND SURGICAL SUPPLIES LTD INFORMATION GOVERNANCE POLICY Moorland is committed to ensuring that, as far as it is reasonably practicable, the way we provide services to the public and the way we treat

More information

Barnsley Clinical Commissioning Group. Information Governance Policy and Management Framework

Barnsley Clinical Commissioning Group. Information Governance Policy and Management Framework Putting Barnsley People First Barnsley Clinical Commissioning Group Information Governance Policy and Management Framework Version: 1.1 Approved By: Governing Body Date Approved: 16 January 2014 Name of

More information

Information Governance Strategy 2015/16

Information Governance Strategy 2015/16 Information Governance Strategy 2015/16 Ratified Governing Body (November 2015) Status Final Issued November 2015 Approved By Executive Committee (August 2015) Consultation Equality Impact Assessment Internal

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Policy Summary This policy outlines the organisation s approach to the management of Information Governance and information handling. It explains the accountability and reporting

More information

Concerns and Complaints Policy and Procedure

Concerns and Complaints Policy and Procedure Concerns and Complaints Policy and Procedure This policy and procedures may evoke safeguarding adults concerns and as such please refer to the Safeguarding Adults Policy or contact the Trust Safeguarding

More information

Policy Document Control Page

Policy Document Control Page Policy Document Control Page Title Title: Information Governance Policy Version: 5 Reference Number: CO44 Keywords: Information Governance Supersedes Supersedes: Version 4 Description of Amendment(s):

More information

Information Governance Strategy

Information Governance Strategy Information Governance Strategy Document Status Draft Version: V2.1 DOCUMENT CHANGE HISTORY Initiated by Date Author Information Governance Requirements September 2007 Information Governance Group Version

More information

NHS North Durham Clinical Commissioning Group. Information Governance Strategy 2015/16

NHS North Durham Clinical Commissioning Group. Information Governance Strategy 2015/16 NHS North Durham Clinical Commissioning Group Information Governance Strategy 2015/16 Document Status Equality Impact Assessment Document Ratified/Approved By Final No impact Risk and Audit Committee/Governing

More information

Information Governance Strategy. Version No 2.0

Information Governance Strategy. Version No 2.0 Plymouth Community Healthcare CIC Information Governance Strategy Version No 2.0 Notice to staff using a paper copy of this guidance. The policies and procedures page of PCH Intranet holds the most recent

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Version: 4 Bodies consulted: Caldicott Guardian, IM&T Directors Approved by: MT Date Approved: 27/10/2015 Lead Manager: Governance Manager Responsible Director: SIRO Date

More information

Information Governance Policy Version - Final Date for Review: 1 October 2017 Lead Director: Performance, Quality and Cooperate Affairs

Information Governance Policy Version - Final Date for Review: 1 October 2017 Lead Director: Performance, Quality and Cooperate Affairs Information Governance Policy Version - Final Date for Review: 1 October 2017 Lead Director: Performance, Quality and Cooperate Affairs NOTE: This is a CONTROLLED Document. Any documents appearing in paper

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY Issued by: Senior Information Risk Owner Policy Classification: Policy No: POLIG001 Information Governance Issue No: 1 Date Issued: 18/11/2013 Page No: 1 of 16 Review Date:

More information

Information Governance Policy

Information Governance Policy Information Governance Policy UNIQUE REF NUMBER: AC/IG/013/V1.2 DOCUMENT STATUS: Approved by Audit Committee 19 June 2013 DATE ISSUED: June 2013 DATE TO BE REVIEWED: June 2014 1 P age AMENDMENT HISTORY

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Information Governance Policy Issue Date: June 2014 Document Number: POL_1008 Prepared by: Information Governance Senior Manager Insert heading depending on Insert line heading

More information

Version Number Date Issued Review Date V1 25/01/2013 25/01/2013 25/01/2014. NHS North of Tyne Information Governance Manager Consultation

Version Number Date Issued Review Date V1 25/01/2013 25/01/2013 25/01/2014. NHS North of Tyne Information Governance Manager Consultation Northumberland, Newcastle North and East, Newcastle West, Gateshead, South Tyneside, Sunderland, North Durham, Durham Dales, Easington and Sedgefield, Darlington, Hartlepool and Stockton on Tees and South

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Version: Revised: Consultation: Ratified by: 1.0 Information Governance Committee Governance Committee Date ratified: 19 March 2008 Name of originator/author: David McGrath

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY Version Version 1 Ratified By Date Ratified PROPOSED FOR APPROVAL 15/11/12 Author(s) Responsible Committee / Officers Date Issue November 2012 Review Date November 2013 Intended

More information

Gloucestershire Hospitals

Gloucestershire Hospitals Gloucestershire Hospitals NHS Foundation Trust TRUST POLICY In the case of hard copies of this policy the content can only be assured to be accurate on the date of issue marked on the document. The Policy

More information

Information Governance Strategy & Policy

Information Governance Strategy & Policy Information Governance Strategy & Policy March 2014 CONTENT Page 1 Introduction 1 2 Strategic Aims 1 3 Policy 2 4 Responsibilities 3 5 Information Governance Reporting Structure 4 6 Managing Information

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY Version: 3.2 Authorisation Committee: Date of Authorisation: May 2014 Ratification Committee Level 1 documents): Date of Ratification Level 1 documents): Signature of ratifying

More information

JOB DESCRIPTION. Information Governance Manager

JOB DESCRIPTION. Information Governance Manager JOB DESCRIPTION POST TITLE: Information Governance Manager DIRECTORATE: ACCOUNTABLE TO: BAND: LOCATION: CSS Head of Information Governance 8a CSS Job Purpose The Information Governance Manager will ensure

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Version 1.1 Responsible Person Information Governance Manager Lead Director Head of Corporate Services Consultation Route Information Governance Steering Group Approval Route

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY POLICY NO IM&T 011 DATE RATIFIED January 2012 NEXT REVIEW DATE January 2015 POLICY STATEMENT/KEY OBJECTIVE: To provide an overarching framework through which Information Governance

More information

Information Governance Policy

Information Governance Policy BEXLEY CARE TRUST MANAGEMENT MANUAL Title: INFORMATION GOVERNANCE POLICY Originating Department: IT DEPARTMENT Authorised by: Risk Management Committee June 2008 Reference no: CA12 Date of Issue: JANUARY

More information

Information Governance Policy. Church Road Medical Practice

Information Governance Policy. Church Road Medical Practice Information Governance Policy Church Road Medical Practice Version No: 1.0 Issue Date: March 2015 INFORMATION GOVERNANCE POLICY 1. Summary Information is a vital asset, both in terms of the clinical management

More information

Surrey & Sussex Healthcare NHS Trust

Surrey & Sussex Healthcare NHS Trust Surrey & Sussex Healthcare NHS Trust An Organisation-wide Policy for Information Governance (IG) Version 1.3 Status Ratified Date Ratified March 2008 Name of Owner Name of Sponsor Group Name of Ratifying

More information

NHS Hartlepool and Stockton-on-Tees Clinical Commissioning Group. Information Governance Strategy 2015/16

NHS Hartlepool and Stockton-on-Tees Clinical Commissioning Group. Information Governance Strategy 2015/16 NHS Hartlepool and Stockton-on-Tees Clinical Commissioning Group Information Governance Strategy 2015/16 Document Status Equality Impact Assessment Final No impact Document Ratified/Approved By Hartlepool

More information

INFORMATION GOVERNANCE POLICY & FRAMEWORK

INFORMATION GOVERNANCE POLICY & FRAMEWORK INFORMATION GOVERNANCE POLICY & FRAMEWORK Version 1.2 Committee Approved by Audit Committee Date Approved 5 March 2015 Author: Responsible Lead: Associate IG Specialist, YHCS Corporate & Governance Manger

More information

This Policy supersedes the following Policy, which must now be destroyed :

This Policy supersedes the following Policy, which must now be destroyed : Document Title Reference Number Lead Officer Author(s) (name and designation) Ratified by Removable Media: Data Encryption Policy NTW(O)30 Lisa Quinn Executive Director of Performance and Assurance Sue

More information

USE OF PERSONAL MOBILE DEVICES POLICY

USE OF PERSONAL MOBILE DEVICES POLICY Policies and Procedures USE OF PERSONAL MOBILE DEVICES POLICY Date Approved by Information Strategy Group Version Issue Date Review Date Executive Lead Information Asset Owner Author 15.04.2014 1.0 01/08/2014

More information

SALISBURY NHS FOUNDATIONTRUST

SALISBURY NHS FOUNDATIONTRUST SALISBURY NHS FOUNDATIONTRUST PAPER SHC 1738 TITLE Information Governance Policy PURPOSE OF PAPER The Information Governance Policy was first approved in April 2005. It is currently due for review to ensure

More information

Information Governance Policy (incorporating IM&T Security)

Information Governance Policy (incorporating IM&T Security) (incorporating IM&T Security) ONCE PRINTED OFF, THIS IS AN UNCONTROLLED DOCUMENT. PLEASE CHECK THE INTRANET FOR THE MOST UP TO DATE COPY Target Audience: All staff employed or working on behalf of the

More information

Information Security Policy

Information Security Policy Information Security Policy JUNE 2014 Author Responsibility Lynda Harris, Head of Information Governance, Central Eastern CSU, Bedfordshire and Luton All staff Effective Date June 2014 Review Date June

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Reference: Information Governance Policy Date Approved: April 2013 Approving Body: Board of Trustees Implementation Date: April 2013 Version: 6 Supersedes: 5 Stakeholder groups

More information

CONTRACTS REVIEW FOR INFORMATION GOVERNANCE COMPLIANCE PROCEDURE

CONTRACTS REVIEW FOR INFORMATION GOVERNANCE COMPLIANCE PROCEDURE This document is uncontrolled once printed. Please check on the CCG s Intranet site for the most up to date version CONTRACTS REVIEW FOR INFORMATION GOVERNANCE COMPLIANCE PROCEDURE Document Title: Contracts

More information

Information Governance Strategy. Version No 2.1

Information Governance Strategy. Version No 2.1 Livewell Southwest Information Governance Strategy Version No 2.1 Notice to staff using a paper copy of this guidance. The policies and procedures page of LSW Intranet holds the most recent version of

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY Name of Policy Author: Name of Review/Development Body: Ratification Body: Ruth Drewett Information Governance Steering Group Committee Trust Board : April 2015 Review date:

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Responsible Officer Author Ben Bennett, Business Planning & Resources Director Julian Lewis, Governance Manager Date effective from August 2009 Date last amended August 2009

More information

INFORMATION ASSURANCE DOCUMENTED PLAN

INFORMATION ASSURANCE DOCUMENTED PLAN NHS South West Lincolnshire Clinical Commissioning Group (CCG) INFORMATION ASSURANCE DOCUMENTED PLAN Document History: Document Reference: Document Purpose: IG18 To provide guidance to all CCG staff about

More information

INFORMATION ASSURANCE DOCUMENTED PLAN

INFORMATION ASSURANCE DOCUMENTED PLAN INFORMATION ASSURANCE DOCUMENTED PLAN Document Reference: Document Purpose: IG20 Date Approved: Approving Committee: To provide guidance to all CCG staff about the CCG s documented plan for Information

More information

Information Governance Strategy

Information Governance Strategy Information Governance Strategy ONCE PRINTED OFF, THIS IS AN UNCONTROLLED DOCUMENT. PLEASE CHECK THE INTRANET FOR THE MOST UP TO DATE COPY Target Audience: All staff employed or working on behalf of the

More information

Date of review: January 2016 Policy Category: Corporate Sponsor (Director): Chief Executive CONTENT SECTION DESCRIPTION PAGE.

Date of review: January 2016 Policy Category: Corporate Sponsor (Director): Chief Executive CONTENT SECTION DESCRIPTION PAGE. Title: Information Governance Policy Date Approved: Approved by: Date of review: Policy Ref: Issue: January 2015 Information Governance Group Division/Department: January 2016 Policy Category: ISP-04 5

More information

Document Title. Reference Number. Lead Officer. Author(s) (name and designation) Ratified by. Date ratified. Implementation Date

Document Title. Reference Number. Lead Officer. Author(s) (name and designation) Ratified by. Date ratified. Implementation Date Document Title Reference Number Lead Officer Author(s) (name and designation) Ratified by Date ratified Implementation Date Date of full implementation Review Date Version number Review and Amendment Log

More information

NHS Commissioning Board: Information governance policy

NHS Commissioning Board: Information governance policy NHS Commissioning Board: Information governance policy DOCUMENT STATUS: To be approved / Approved DOCUMENT RATIFIED BY: DATE ISSUED: October 2012 DATE TO BE REVIEWED: April 2013 2 AMENDMENT HISTORY: VERSION

More information

Information Governance Strategy

Information Governance Strategy Information Governance Strategy THCCGCG9 Version: 01 The information governance strategy outlines the CCG governance aims and the key objectives of its governance policies. The Chief officer has the overarching

More information

Information Governance Policy

Information Governance Policy Policy Policy Number / Version: v2.0 Ratified by: Audit Committee Date ratified: 25 th February 2015 Review date: 24 th February 2016 Name of originator/author: Name of responsible committee/individual:

More information

INFORMATION GOVERNANCE

INFORMATION GOVERNANCE This document is uncontrolled once printed. Please refer to the Trusts Intranet site (Procedural Documents) for the most up to date version INFORMATION GOVERNANCE NGH-PO-233 Ratified By: Procedural Document

More information

INFORMATION LIFECYCLE & RECORDS MANAGEMENT POLICY

INFORMATION LIFECYCLE & RECORDS MANAGEMENT POLICY INFORMATION LIFECYCLE & RECORDS MANAGEMENT POLICY Unique Reference / Version Primary Intranet Location Information Management & Governance Secondary Intranet Location Policy Name Information Lifecycle

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY NWAS Information Governance Policy Page: Page 1 of 10 Date of Issue: January 2014 Date of Review February 2015 Recommended by Approved by Information Governance Management

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY Including the Information Governance Strategy Framework and associated Information Governance Procedures Last Review Date Approving Body N/A Governing Body Date of Approval

More information

CCG: IG06: Records Management Policy and Strategy

CCG: IG06: Records Management Policy and Strategy Corporate CCG: IG06: Records Management Policy and Strategy Version Number Date Issued Review Date V3 08/01/2016 01/01/2018 Prepared By: Consultation Process: Senior Governance Manager, NECS CCG Head of

More information

INFORMATION GOVERNANCE POLICY & STRATEGY FINAL DRAFT

INFORMATION GOVERNANCE POLICY & STRATEGY FINAL DRAFT INFORMATION GOVERNANCE POLICY & STRATEGY FINAL DRAFT Prepared By: Alistair Stewart Responsible Person: Endorsed by: Information Governance Committee Date: May 2008 Review: June 2009 Issue Number Draft

More information

SOMERSET PARTNERSHIP NHS FOUNDATION TRUST RECORDS MANAGEMENT STRATEGY. Report to the Trust Board 22 September 2015. Information Governance Manager

SOMERSET PARTNERSHIP NHS FOUNDATION TRUST RECORDS MANAGEMENT STRATEGY. Report to the Trust Board 22 September 2015. Information Governance Manager SOMERSET PARTNERSHIP NHS FOUNDATION TRUST RECORDS MANAGEMENT STRATEGY Report to the Trust Board 22 September 2015 Sponsoring Director: Author: Purpose of the report: Key Issues and Recommendations: Director

More information

Procedures. Issue Date: June 2014 Version Number: 2.0. Document Number: POL_1009. Status: Approved Next Review Date: April 2017 Page 1 of 17

Procedures. Issue Date: June 2014 Version Number: 2.0. Document Number: POL_1009. Status: Approved Next Review Date: April 2017 Page 1 of 17 Proforma: Information Policy Security & Corporate Policy Procedures Status: Approved Next Review Date: April 2017 Page 1 of 17 Issue Date: June 2014 Prepared by: Information Governance Senior Manager Status:

More information

INFORMATION RISK MANAGEMENT POLICY

INFORMATION RISK MANAGEMENT POLICY INFORMATION RISK MANAGEMENT POLICY DOCUMENT CONTROL: Version: 1 Ratified by: Steering Group / Risk Management Sub Group Date ratified: 21 November 2012 Name of originator/author: Manager Name of responsible

More information

Information Sharing Policy

Information Sharing Policy Information Sharing Policy REFERENCE NUMBER IG 010 / 0v3 February 2013 VERSION V1.0 APPROVING COMMITTEE & DATE Clinical Executive Committee 5.2.13 REVIEW DUE DATE February 2016 West Lancashire CCG is committed

More information

Information Governance Strategy and Policy. OFFICIAL Ownership: Information Governance Group Date Issued: 15/01/2015 Version: 2.

Information Governance Strategy and Policy. OFFICIAL Ownership: Information Governance Group Date Issued: 15/01/2015 Version: 2. Information Governance Strategy and Policy Ownership: Information Governance Group Date Issued: 15/01/2015 Version: 2.0 Status: Final Revision and Signoff Sheet Change Record Date Author Version Comments

More information

Information Management Policy CCG Policy Reference: IG 2 v4.1

Information Management Policy CCG Policy Reference: IG 2 v4.1 Information Management Policy CCG Policy Reference: IG 2 v4.1 Document Title: Policy Information Management Document Status: Final Page 1 of 15 Issue date: Nov-2015 Review date: Nov-2016 Document control

More information

Policy Checklist. Head of Information Governance

Policy Checklist. Head of Information Governance Policy Checklist Name of Policy: Information Governance Policy Purpose of Policy: To provide guidance to all staff on their responsibilities regarding information governance and to ensure that the Trust

More information

NETWORK SECURITY POLICY

NETWORK SECURITY POLICY NETWORK SECURITY POLICY Policy approved by: Governance and Corporate Affairs Committee Date: December 2014 Next Review Date: August 2016 Version: 0.2 Page 1 of 14 Review and Amendment Log / Control Sheet

More information

MANAGEMENT OF POLICIES, PROCEDURES AND OTHER WRITTEN CONTROL DOCUMENTS

MANAGEMENT OF POLICIES, PROCEDURES AND OTHER WRITTEN CONTROL DOCUMENTS MANAGEMENT OF POLICIES, PROCEDURES AND OTHER WRITTEN CONTROL DOCUMENTS Document Reference No: Version No: 6 PtHB / CP 012 Issue Date: April 2015 Review Date: January 2018 Expiry Date: April 2018 Author:

More information

Type of change. V02 Review Feb 13. V02.1 Update Jun 14 Section 6 NPSAS Alerts

Type of change. V02 Review Feb 13. V02.1 Update Jun 14 Section 6 NPSAS Alerts Document Title Reference Number Lead Officer Author(s) (name and designation) Ratified By Central Alerting System (CAS) Policy NTW(O)17 Medical Director Tony Gray Head of Safety and Patient Experience

More information

Information Governance Strategy

Information Governance Strategy Information Governance Strategy To whom this document applies: All Trust staff, including agency and contractors Procedural Documents Approval Committee Issue Date: January 2010 Version 1 Document reference:

More information

Information Governance Policy. 2 RESPONSIBLE PERSON: Steve Beeho, Head of Integrated Governance. All CCG-employed staff.

Information Governance Policy. 2 RESPONSIBLE PERSON: Steve Beeho, Head of Integrated Governance. All CCG-employed staff. Information Governance Policy 1 SUMMARY This policy is intended to ensure that staff are fully aware of their Information Governance (IG) responsibilities, so that they can effectively manage and best

More information

Data Quality Policy. March 2015 POLICY DEVELOPMENT PROCESS. Data Quality Policy Page 1

Data Quality Policy. March 2015 POLICY DEVELOPMENT PROCESS. Data Quality Policy Page 1 Data Quality Policy March 2015 Author: Lynda Harris, Head of Information Governance LyndaHarris2@nhs.net Responsibility: All Staff Effective Date: March 2015 Review Date: March 2017 Reviewing/Endorsing

More information

Policies for: Information Governance Information Quality Information Management Information Security. Version Control Version: 0.1

Policies for: Information Governance Information Quality Information Management Information Security. Version Control Version: 0.1 Policies for: Information Governance Information Quality Information Management Information Security Approved by: None this version Date approved: Name of originator/author: Ade Oduntan, Mike Hellier,

More information

GUIDANCE ON SECTION 5(2) AND SECTION 5(4) OF THE MENTAL HEALTH ACT 1983 ~ HOLDING POWERS ~

GUIDANCE ON SECTION 5(2) AND SECTION 5(4) OF THE MENTAL HEALTH ACT 1983 ~ HOLDING POWERS ~ GUIDANCE ON SECTION 5(2) AND SECTION 5(4) OF THE MENTAL HEALTH ACT 1983 ~ HOLDING POWERS ~ Version 1.0 Ratified by Mental Health Law Governance Group Date ratified 10/09/2012 Name of originator/author

More information

Information Governance Policy

Information Governance Policy Information Governance Policy 1 Introduction Healthwatch Rutland (HWR) needs to collect and use certain types of information about the Data Subjects who come into contact with it in order to carry on its

More information

NHS Business Services Authority Information Governance Policy

NHS Business Services Authority Information Governance Policy NHS Business Services Authority Information Governance Policy NHS Business Services Authority Corporate Secretariat NHSBSAIGM002 Issue Sheet Document reference NHSBSAIGM002 Document location F:\CEO\IGM\Info

More information

Information Security Policy

Information Security Policy Information Security Policy Reference No: Version: 5 Ratified by: CG007 Date ratified: 26 July 2010 Name of originator/author: Name of responsible committee/individual: Date approved by relevant Committee:

More information

NETWORK SECURITY POLICY

NETWORK SECURITY POLICY NETWORK SECURITY POLICY Policy approved by: Assurance Committee Date: 3 December 2014 Next Review Date: December 2016 Version: 1.0 Page 1 of 12 Review and Amendment Log/Control Sheet Responsible Officer:

More information

Information Governance Framework and Strategy. November 2014

Information Governance Framework and Strategy. November 2014 November 2014 Authorship : Committee Approved : Chris Wallace Information Governance Manager CCG Senior Management Team and Joint Trade Union Partnership Forum Approved Date : November 2014 Review Date

More information

Mental Health Act Code of Practice. Professions and Care Standards Liz Johnson - Head of Equality and Inclusion. Group

Mental Health Act Code of Practice. Professions and Care Standards Liz Johnson - Head of Equality and Inclusion. Group Policy: Equality and Human Rights Executive or Associate Director lead Policy author/ lead Feedback on implementation to Liz Lightbown - Executive Director of Nursing, Professions and Care Standards Liz

More information

Information Governance Strategy :

Information Governance Strategy : Item 11 Strategy Strategy : Date Issued: Date To Be Reviewed: VOY xx Annually 1 Policy Title: Strategy Supersedes: All previous Strategies 18/12/13: Initial draft Description of Amendments 19/12/13: Update

More information

Version: Date adopted: publication: Review date: September 2015. Expiry date: March 2016. Target audience: All staff

Version: Date adopted: publication: Review date: September 2015. Expiry date: March 2016. Target audience: All staff Asbestos Policy The Asbestos Policy provides guidance to ensure that all appropriate steps are taken to comply with the duty to manage asbestos and comply with asbestos related legislation, codes of practice

More information

Policy: D9 Data Quality Policy

Policy: D9 Data Quality Policy Policy: D9 Data Quality Policy Version: D9/02 Ratified by: Trust Management Team Date ratified: 16 th October 2013 Title of Author: Head of Knowledge Management Title of responsible Director Director of

More information

Information Security Policy

Information Security Policy Information Security Policy v2.0 Target Audience: Policy Endorsed by: ESCC Staff, members and other agencies handling ESCC information Governance Committee Final V2.0 Page 1 of 13 Information Security

More information

INFORMATION GOVERNANCE INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE INFORMATION GOVERNANCE POLICY Appendix 1 INFORMATION GOVERNANCE INFORMATION GOVERNANCE POLICY Author Information Governance Review Group Information Governance Committee Review Date May 2014 Last Update February 2013 Document No. GV

More information

NHS Waltham Forest Clinical Commissioning Group Information Governance Policy

NHS Waltham Forest Clinical Commissioning Group Information Governance Policy NHS Waltham Forest Clinical Commissioning Group Information Governance Policy Author: Zeb Alam & David Pearce Version 3.0 Amendments to Version 2.1 Updates made in line with National Guidance and Legislation

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY ENFIELD CLINICAL COMMISSIONING GROUP INFORMATION GOVERNANCE POLICY PLEASE DESTROY ALL PREVIOUS VERSIONS OF THIS DOCUMENT Enfield CCG Information Governance Policy Information Governance Policy (Policy

More information

A Question of Balance

A Question of Balance A Question of Balance Independent Assurance of Information Governance Returns Audit Requirement Sheets Contents Scope 4 How to use the audit requirement sheets 4 Evidence 5 Sources of assurance 5 What

More information

Information governance policy

Information governance policy Information governance policy Issue sheet Document reference Document location Title Author Issued to Reason issued NHSBSAIGM002a S:\BSA\IGM\Mng IG\Developing Policy and Strategy\Develop or Review IG Policy\Current

More information

Business Continuity Policy and Business Continuity Management System

Business Continuity Policy and Business Continuity Management System Business Continuity Policy and Business Continuity Management System Summary: This policy sets out the structure for ensuring that the PCT has effective Business Continuity Plans in place in order to maintain

More information

Document Title. Administration of the Data Protection Act Lead Author(s) Medical Director/ Caldicott Guardian

Document Title. Administration of the Data Protection Act Lead Author(s) Medical Director/ Caldicott Guardian Document Title Administration of the Data Protection Act 1998 Document Description Document Type Procedure Service Application Trust Wide Version 4.1 Name Mr Amir Khan Lead Author(s) Job Title Medical

More information

RECORDS MANAGEMENT POLICY

RECORDS MANAGEMENT POLICY RECORDS MANAGEMENT POLICY Version 8.0 Purpose: For use by: This document is compliant with /supports compliance with: To outline the lifecycle of a record and to provide guidance on retention and disposal

More information

POLICY REFERENCE NUMBER Version 1.1. NEXT REVIEW DATE: June 2017 RISK RATING EQUALITY ANALYSIS

POLICY REFERENCE NUMBER Version 1.1. NEXT REVIEW DATE: June 2017 RISK RATING EQUALITY ANALYSIS POLICY Security Classification Disclosable under Freedom of Information Act 2000 Yes POLICY TITLE Information Assurance POLICY REFERENCE NUMBER A022 Version 1.1 POLICY OWNERSHIP DIRECTORATE BUSINESS AREA

More information

SUBJECT ACCESS REQUEST PROCEDURE

SUBJECT ACCESS REQUEST PROCEDURE SUBJECT ACCESS REQUEST PROCEDURE Document History Document Reference: Document Purpose: IG31 This procedure sets out the responsibility for staff when receiving requests for information provided under

More information