How is RBAC used in SUS?

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "How is RBAC used in SUS?"

Transcription

1 Role Based Access Control What is RBAC? SUS is a part of the NHS Care Record Service (NCRS) application from the National Programme for IT (NPfIT) and is accessed from the NHS national data network, the NPfIT Spine. Role Based Access Control (RBAC) is an integral part of the NPfIT Spine security process. When users go through the registration process to be granted a Smart Card and then register one or more Role Profiles for use within an application they are using RBAC. By registering a Role Profile details of the organisation for which that individual works and the job role they fulfil can be passed to an application. This job role may be associated with certain business functions and these are also passed to the application and allow or restrict access to certain parts of the application. An individual s Role Profile may also be associated with one or more Work Groups, Areas of Work or Business Functions and so can build up a complex profile of what they are allowed to see and do within an application. The relationship between these is illustrated below. Authorised User UUID Role Profile Organisation Job Role Work Group Area of Work Business Function Page 1 of 7

2 The diagram above shows that the Role Profile can have further structure associated with it to add definition to the profile. For each job role within an organisation; any Work Group(s) of which the Authorised User is a member; there can be zero, one or more Work Groups a Work Group is five numeric characters a Work Group is associated with an Organisation as there are no national agreed codes optional Area(s) of Work within which that user s Job Role may be exercised; there can be zero, one or more Areas of work an Area of Work is three 5 character fields Area of Work must be valid National Workforce Dataset codes optional identification of Business Function(s) that the Authorised User will be permitted to perform; there can be zero, one or more Business Functions; Business Function is a five character numeric code Business Functions are associated with specific applications (such as SUS), these must be agreed with the application designers for any given application User registration and the definition of RBAC is delivered by an organisation s Registration Authority. The details for which can be found at: How is RBAC used in SUS? It is the stated policy of SUS to make historical patient based data available to as wide an audience as possible. SUS provides a secure environment in which these data can be used for all secondary uses such as commissioner planning, audit, research and analysis. SUS will also provide the functions necessary to enable data management and extraction as well as report processing and presentation. As SUS develops and more functions are added, such as support for National Clinical Audit Support Programme (NCASP), then the use of RBAC s functionality will increase. It is likely that Work Groups will be identified which will group together certain functions within an application area. It will also be possible to identify certain job roles that can be associated with business functions within SUS. In this way registering against a given job role will automatically assign the user the correct Activities without the need to identify these individually. Please note that these facilities will not be available within the first SUS release. In future it will also be possible to alter the view of the data which a user is given. In the first delivery of SUS the sensitive data is held as either encrypted or derived values. Work has taken place with various interest groups to Page 2 of 7

3 identify specific examples where access to these data items as clear values is required for uses other than direct patient care. So in the future sensitive data will be made available for specific requirements and access to this data will be tightly controlled using the RBAC facility. Users will need specific permission to register using a small range of Activities which will give access to the sensitive data items for very specific purposes. Registration Why must I register? SUS is an application delivered across the NPfIT Spine. All such applications must work within the security arrangements laid down by the NPfIT team. All users must be registered with the Registration Authority responsible for their organisation. Registration provides each user with a Smart Card and PIN code and registers them on the central system with a Unique User Id (UUID). SUS can only be accessed via a workstation which is configured as a Spine Portal. To make use of the workstation a user must have a Smart Card and PIN code, if the Smart Card is removed at anytime during a work session then that user will be automatically logged out of the session. What else must I do? The first part of the registration process enables a user to log on to a Spine Portal workstation. In addition users must register one or more Role Profiles which give access to the various applications on the Spine of which SUS is one. A Role Profile carries a record of the organisation for which the user works and the job role normally carried out for that organisation. If the user carries out different job roles for a given organisation or works for more than one organisation then they may need to register a Role Profile for each. This depends on the type of work a user wishes to carry out within any given application. Within SUS, for example, if a user wishes only to make use of the on-line query function then they need have only one role profile registered for SUS use. We are currently working on a solution for multiple organisation access by individuals, for example staff working in Health Informatics Services. How do I know what Activities to register for? Within the current version of SUS only the organisation for which a user works and the business functions for which they are registered have any bearing on that user s access to the application. Work groups and areas of work are not used. Within SUS the job role under which a user is registered does not have any direct affect on the data to which they are given access. Page 3 of 7

4 The Activities that a user registers for in SUS are directly linked to the business functions within RBAC. So when that user logs on to SUS the application knows the organisation for which they work and the Activities they are allowed to carry out. At the end of this document is a list of the SUS Activities that can be registered against a Role Profile. They relate directly to the business functions that can be carried out in the SUS application. It should be noted that as the functionality within the SUS application increases then this list will become more comprehensive. Users should ensure that they liaise with their Registration Authority to ensure that they have up-to-date copies of the IG RBAC Control Names and Codes sheet from which this list comes. SUS Activities appear on version 13 or later. Guidance on SUS Activities Query the SUS data sets B1500 All SUS users must register this Activity against their Role Profile. It allows the user to: Access the SUS application from the NPfIT Spine Access the on-line query function View the SIM data mart Please note that: Users will need to register this Activity against all Role Profiles which they intend to use for SUS access. To view additional data marts using the on-line query function users will need to register additional Activities National Data Set Extracts Users who wish to run the predefined queries that produce the NDS extracts as a file to view on screen or download directly to a local workstation must register for one of the Activities which allow this. Execute Commissioner NDS Extract B1505 o Runs the NDS extracts for a given commissioning organisation Execute Provider NDS Extracts B1510 o Runs the NDS extracts for a given NHS Provider These NDS extract functions use the organisation code within the user s Role Profile under which they are currently logged in. If, for example a user registers the Activity B1510 (Execute Provider NDS Extracts) but their organisation is not a provider of NHS services then they will get a blank report returned. Users should therefore ensure that the Activities they register for are reasonable. Page 4 of 7

5 National Data Set Submissions NHS service provider organisations currently submit data to the NHS Wide Clearing Service (NWCS). SUS will replace the functionality of this service. As part of this service a nominated user is ed to notify them that their latest data submission has been received into the first stage of the update process. They then have the opportunity to review the data quality report (DQR) and confirm or reject the data passing through to the next stages. The following activity should be given to this user (and a small group to act as deputies) to enable the DQR to be generated and read within SUS: View Data Quality Reports for Data Submissions B1530 Electronic Data Quality Reporting Service (edqrs) SUS provides all of the functionality of the edqr service. All users of SUS may register for any or all of the following edqrs business functions using the following Activities: Reports (Inpatients) B1535 Reports (Mental Health) B1540 Reports (Outpatients) B1545 Reports Toolkit Service Tracking Reports SUS provides all of the functionality of the service tracking facility. All users of SUS may register for this Activity; Execute Service Tracking Reports B1525 Payment by Results (PbR) SUS provides the functionality to support Payment by Results (PbR) and gives consistent views of the data to support dialogue between commissioning and providing organisations. The PbR function provides access to all of the data necessary to resolve data quality issues between commissioner and provider and carry out reporting and data matching tasks. Authorised users will therefore have access to data in clear for the organisations they represent. The PbR Mart will include data for 2004/5 1 as well as 2005/6 and, in time, will maintain up to 7 years historic data. For a user to be provided with a view of these data from the on-line query function, they must register the following Activity in their User Profile: Query the PbR data sets B Discussions are presently under way about whether 2003/4 data relating to 2004/5 spells should be maintained to support the 2006/7 base lining exercise. Page 5 of 7

6 In addition users may carry out pre defined PbR data extracts dependant on whether they represent a NHS service commissioner or service provider organisation. Where an organisation acts as both, then a user from such an organisation can register for both of the following Activities: Execute PbR Commissioning Extracts B1560 Execute PbR Provider Extracts B1565 Restricted Activities Some Activities are restricted to being run by particular users. For example the following two Activities are run once in a period and the results communicated to the NHS IC. Execute Health Episode Statistics Extracts B1515 Execute Provider Mental Health Minimum Data Set Extracts B1520 They are not functions that will be generally available to users. The guidebook for the RAs has up-to-date information about any such restricted Activities and they will be able to offer further guidance. Further Information SUS: This web site contains up-to-date information about SUS delivery, implementation issues and FAQs. It also contains a full glossary of terms and allows you to submit questions to the SUS help desk. Registration: This NHS web site contains information regarding how to register for using any Spine application and all of the issues regarding the process not covered in this document. Page 6 of 7

7 SECONDARY USES SERVICE (SUS) Activity Name BF Code Activity Description Query the SUS data sets B1500 Allows a user access to the Secondary Uses Service (SUS) and gives access to general repository of historical National Data Set (NDS) data and allows the user to see all Central Returns. Execute Commissioner NDS Extracts B1505 Allows a user to run the predefined standard NDS data extracts for a commissioning organisation within the NHS Execute Provider NDS Extracts B1510 Allows a user to run predefined standard NDS data extracts for a provider organisation within the NHS Execute Health Episode Statistics Extracts Execute Provider Mental Health Minimum Data Set Extracts B1515 B1520 Allows a user to run predefined standard HES data extracts for an organisation within the NHS Allows a user to run predefined standard MHMDS data extracts for an organisation within the NHS Execute Service Tracking Reports B1525 Allows a user to run predefined standard service tracking reports for submitted data View Data Quality Reports for data submissions Reports (Inpatients) Reports (Mental Health) Reports (Outpatients) Reports Toolkit B1530 B1535 B1540 B1545 B1550 Allows a user to view the latest data quality report, for data they have submitted through the Data Transfer Service (DTS), and accept or reject the submission. Allows a user to generate a data quality report against an existing inpatient data set. Allows a user to generate a data quality report against an existing mental health data set. Allows a user to generate a data quality report against an existing outpatient data set. Allows a user access to the edqrs toolkit functions Query the PbR data sets B1555 Allows a user access to the general repository of historical PbR data and the capability to generate ad hoc reports against this database. Execute PbR Commissioning Extracts B1560 Allows a user to run a predefined data extract from the PbR Commissioning data set Execute PbR Provider Extracts B1565 Allows a user to run a predefined data extract from the PbR Provider data set Page 7 of 7

Guidance for Sponsors & Registration Agents on the Granting of SUS RBAC Activities

Guidance for Sponsors & Registration Agents on the Granting of SUS RBAC Activities Programme NPFIT Document Record ID Key Sub-Prog / Project Secondary Uses Service Prog. Director J Thorp Version 5.1 Owner Status Author Craig Watson Version Oct- 12 Date Secondary Uses Service Guidance

More information

Data quality checks performed on SUS and HES data

Data quality checks performed on SUS and HES data Data quality checks performed on SUS and HES data Author: HES Data Quality Team Date: 24 th February 2014 1 Copyright 2013, Health and Social Care Information Centre. Version Control Version Date Author

More information

IAPT Data Standard. Frequently Asked Questions

IAPT Data Standard. Frequently Asked Questions IAPT Data Standard Frequently Asked Questions Version 1.0 March 2012 IAPT FAQs 1.0-1 - Contents Section 1: About the IAPT Data Standard.. 3 Section 2: Who is responsible for doing what?. 5 Section 3: How

More information

<INSERT PROJECT NAME> DATA MIGRATION CHECKLIST

<INSERT PROJECT NAME> DATA MIGRATION CHECKLIST DATA MIGRATION CHECKLIST Ensure you always have the latest version of this document. Document Location This document is only valid on the day it was printed. The source of the document

More information

De-identification of Data using Pseudonyms (Pseudonymisation) Policy

De-identification of Data using Pseudonyms (Pseudonymisation) Policy De-identification of Data using Pseudonyms (Pseudonymisation) Policy Version: 2.0 Page 1 of 7 Partners in Care This is a controlled document. It should not be altered in any way without the express permission

More information

Data Quality Policy SH NCP 2. Version: 5. Summary:

Data Quality Policy SH NCP 2. Version: 5. Summary: SH NCP 2 Summary: Keywords (minimum of 5): (To assist policy search engine) Target Audience: The Trust provides a framework to ensure all data that is recorded by the Trust is accurate and complies to

More information

Tracing, Recording and Using NHS Number Policy & Procedure

Tracing, Recording and Using NHS Number Policy & Procedure SH IG 44 Tracing, Recording and Using NHS Number Policy & Procedure Summary: This policy and procedure applies to all Southern Health NHS Foundation Trust teams and services. It relates to clients/patients

More information

2011/12 SUS Payment by Results (PbR) Release 9 Webinars - Questions and Answers

2011/12 SUS Payment by Results (PbR) Release 9 Webinars - Questions and Answers 2011/12 SUS Payment by Results (PbR) Release 9 Webinars - Questions and Answers This document contains the Questions and Answers from the five Release 9 webinar sessions run by BT. The answers to the questions

More information

A Guide to Clinical Coding Audit Best Practice 2015-16

A Guide to Clinical Coding Audit Best Practice 2015-16 A Guide to Clinical Coding Audit Best Practice 2015-16 Authors: Clinical Classifications Service Contents 1 Introduction 3 1.1 Purpose of Document 3 1.2 Audience 3 1.3 Background 3 1.3.1 Information Governance

More information

SUS R13 PbR Technical Guidance

SUS R13 PbR Technical Guidance SUS R13 PbR Technical Guidance Published 2nd April 2013 We are the trusted source of authoritative data and information relating to health and care. www.hscic.gov.uk enquiries@hscic.gov.uk Contents Introduction

More information

Civica Health & Social Care

Civica Health & Social Care Civica Health & Social Care Focus on > SLAM for Healthcare Providers Improved communications with commissioners, leading to clarity and better relationships Civica Focus on> The solution SLAM is the ideal

More information

NHS Business Services Authority Registration Authority and Smartcard Management Procedure

NHS Business Services Authority Registration Authority and Smartcard Management Procedure NHS Business Services Authority Registration Authority and Smartcard Management Procedure NHS Business Services Authority Corporate Secretariat NHSBSAIS005 Issue Sheet Document reference Document location

More information

Health and Social Care Information Centre

Health and Social Care Information Centre Health and Social Care Information Centre Information Governance Assessment Customer: Clinical Audit Support Unit of the Health and Social Care Information Centre under contract to the Royal College of

More information

Data Quality Policy. The Trust will aim to achieve and maintain the highest standards contained within the Information Governance Toolkit.

Data Quality Policy. The Trust will aim to achieve and maintain the highest standards contained within the Information Governance Toolkit. Trust Policy Department / Service: Information Department Originator: Information Governance Manager Accountable Director: Director of Finance/SIRO Approved by: Trust Management Committee Date of approval:

More information

Shropshire Community Health Service NHS Trust Policies, Procedures, Guidelines and Protocols

Shropshire Community Health Service NHS Trust Policies, Procedures, Guidelines and Protocols Shropshire Community Health Service NHS Trust Policies, Procedures, Guidelines and Protocols Title Trust Ref No 1340-29497 Local Ref (optional) Main points the document covers Who is the document aimed

More information

Information Governance Policy

Information Governance Policy Author: Susan Hall, Information Governance Manager Owner: Fiona Jamieson, Assistant Director of Healthcare Governance Publisher: Compliance Unit Date of first issue: February 2005 Version: 5 Date of version

More information

[Type text] SERVICE CATALOGUE

[Type text] SERVICE CATALOGUE [Type text] SERVICE CATALOGUE IT Services 1 IT Support and Management Services SERVICE AREA: SERVICE DESK Users can contact the Service Desk via the phone or an online web form for all their ICT service

More information

Open Data Platform Requirements Workshop 24 th February 2012

Open Data Platform Requirements Workshop 24 th February 2012 Open Data Platform Requirements Workshop 24 th February 2012 Workshop Agenda Objectives: To discuss outline scope To gather short and longer term requirements/benefits To identify some success measures

More information

Data Transfer Service A Migration tool to replace current X.400 messaging between NHS workflow applications

Data Transfer Service A Migration tool to replace current X.400 messaging between NHS workflow applications Data Transfer Service A Migration tool to replace current X.400 messaging between NHS workflow applications Submitter: Richard Corbridge Sponsorship: Gwyn Thomas 1. Introduction 1.1 This paper proposes

More information

SUS Data Quality Dashboards Survey September 2012

SUS Data Quality Dashboards Survey September 2012 File Name: Document Reference No: Version: 1.0 Status: Final Issue Date: January 2013 Author: J. Clough SUS Data Quality Dashboards Survey September 2012 For more information on the status of this document,

More information

Use and verification of the NHS number for all active patients.

Use and verification of the NHS number for all active patients. Title: Reference No: Owner: Author: Use and verification of the NHS number for all active patients. NHSNYYIG-004 Director of Standards Information Governance Team First Issued On: March 2008 Latest Issue

More information

Remote Data Extraction Policy and Procedure

Remote Data Extraction Policy and Procedure Remote Data Extraction Policy and Procedure Prepared by PRIMIS June 2015 The University of Nottingham. All rights reserved. Contents 1. Introduction... 3 2. Purpose and scope... 3 3. Policy Statement...

More information

Policy: D9 Data Quality Policy

Policy: D9 Data Quality Policy Policy: D9 Data Quality Policy Version: D9/02 Ratified by: Trust Management Team Date ratified: 16 th October 2013 Title of Author: Head of Knowledge Management Title of responsible Director Director of

More information

Information Security Assurance Plan 2015/16

Information Security Assurance Plan 2015/16 Information Security Assurance Plan 2015/16 Policy number: N/A Version 2.0 Approved by Name of author/originator Owner (Exec Director) Date of approval August 2015 Date of last review July 2015 Next due

More information

Payment by Results Business Rules 2009-10

Payment by Results Business Rules 2009-10 Payment by Results Business Rules 2009-10 DH INFORMATION READER BOX Policy HR / Workforce Management Planning / Clinical Document Purpose Gateway Reference Title Author Publication Date Target Audience

More information

Integrated Identity Management (IIM) and Registration Authority (RA) Policy NO. HRP14

Integrated Identity Management (IIM) and Registration Authority (RA) Policy NO. HRP14 Integrated Identity Management (IIM) and Registration Authority (RA) Policy NO. HRP14 Applies to: All Staff Committee for Approval Education and Workforce Committee Date of Approval: 21 January 2013 Review

More information

Information Governance Framework and Strategy. November 2014

Information Governance Framework and Strategy. November 2014 November 2014 Authorship : Committee Approved : Chris Wallace Information Governance Manager CCG Senior Management Team and Joint Trade Union Partnership Forum Approved Date : November 2014 Review Date

More information

Barnsley Clinical Commissioning Group. Information Governance Policy and Management Framework

Barnsley Clinical Commissioning Group. Information Governance Policy and Management Framework Putting Barnsley People First Barnsley Clinical Commissioning Group Information Governance Policy and Management Framework Version: 1.1 Approved By: Governing Body Date Approved: 16 January 2014 Name of

More information

Copyright 2016 Health and Social Care Information Centre

Copyright 2016 Health and Social Care Information Centre Document filename: Registration Authorities Operational and Process Guidance Directorate / Programme Access Control Project Access Control Document Reference Project Manager John Winter Status Final Owner

More information

Securing excellence in IT Services. Operating model for offender health care

Securing excellence in IT Services. Operating model for offender health care Securing excellence in IT Services Operating model for offender health care February 2013 Table of Contents 01 Glossary of terms 02 Introduction Purpose of document Background 03 Offender Health IT Commissioning

More information

Information Governance Support Pack

Information Governance Support Pack PCTI Solutions Document Version: 0,1 19 February 2013 Pioneer Court, Pioneer Way, Whitwood, Castleford, West Yorkshire, WF10 5QU T: 01977 66 44 96 F: 01977 66 44 99 E: info@pcti.co.uk W: www.pcti.co.uk

More information

Gloucestershire Hospitals

Gloucestershire Hospitals Gloucestershire Hospitals NHS Foundation Trust TRUST POLICY DATA QUALITY FAST FIND: For information on the Trust s Data Quality standards, see Section 7. For information on the Trust s computer systems,

More information

Birmingham Women s NHS Foundation Trust

Birmingham Women s NHS Foundation Trust Birmingham Women s NHS Foundation Trust Data protection audit report Executive summary January 2015 1. Background The Information Commissioner is responsible for enforcing and promoting compliance with

More information

Peninsula Community Health. Integrated Identity Management Policy (Registration Authority Policy)

Peninsula Community Health. Integrated Identity Management Policy (Registration Authority Policy) Peninsula Community Health (Registration Authority Policy) Title: (Registration Authority) Procedural Document Type: Policy Reference: HRP 43 and ITP04 CQC Outcome: 13 Version: 2 Approved by: Information

More information

Topic of Interest: eating Disorders

Topic of Interest: eating Disorders Topic of Interest: eating Disorders A person with an eating disorder will exhibit an abnormal attitude towards food, resulting in a change in behavior and eating habits. Eating disorder sufferers with

More information

Pseudonymisation Implementation Project (PIP)

Pseudonymisation Implementation Project (PIP) Pseudonymisation Implementation Project (PIP) Reference Paper 3 Guidance on De-identification Final v1.0-20 November 2009 Without Prejudice Header text Guidance on De-identification Programme NPFIT Document

More information

Delivering the Forward View: NHS planning guidance for 2016/17 2020/21

Delivering the Forward View: NHS planning guidance for 2016/17 2020/21 Delivering the Forward View: NHS planning guidance for 2016/17 2020/21 Annex 1 to the Technical Guidance Activity Plan, Contract Tracker and SRG Operational Resilience Template Guidance January 2016 1

More information

Report on a preliminary analysis of the dataflow(s) in HealthConnect system

Report on a preliminary analysis of the dataflow(s) in HealthConnect system Report on a preliminary analysis of the dataflow(s) in HealthConnect system Electronic Health Records: Achieving an Effective and Ethical Legal and Recordkeeping Framework Australian Research Council Discovery

More information

Informatics Policy. Information Governance. Network Account and Password Management Policy

Informatics Policy. Information Governance. Network Account and Password Management Policy Informatics Policy Information Governance Policy Ref: 3589 Document Title Author/Contact Document Reference 3589 Document Control Network Account Management and Password Policy Pauline Nordoff-Tate, Information

More information

Patient Reported Outcome Measures (PROMs) Standards

Patient Reported Outcome Measures (PROMs) Standards Patient Reported Outcome Measures (PROMs) Standards A. Information Governance Requirement This Information Governance Requirement Standard covers four Areas: 1. NHS Systems Requirements, 2. Data Sharing,

More information

Governance. Information. Bulletin. Welcome to the nineteenth edition of the information governance bulletin

Governance. Information. Bulletin. Welcome to the nineteenth edition of the information governance bulletin Welcome to the nineteenth edition of the information governance bulletin Our regular bulletin about information governance and the work of the IG transition programme Publication Gateway Reference: 02465

More information

Specifically, the group is asked to agree (with any caveats it would like to introduce) and endorse:

Specifically, the group is asked to agree (with any caveats it would like to introduce) and endorse: Joining Up Your Information project (JUYI Gloucestershire s Shared Care Record) Proposed Model for Patient Consent to Share Data in Gloucestershire 10 th March 2015 Executive Summary This paper is to request

More information

NHS Business Partners miniguide. Introductory guidance for NHS-commissioned healthcare providers from the independent and third sectors

NHS Business Partners miniguide. Introductory guidance for NHS-commissioned healthcare providers from the independent and third sectors NHS Business Partners Introductory guidance for NHS-commissioned healthcare Introductory guidance for NHS-commissioned healthcare NHS Business Partners Contents Section Description Page 1 Introduction

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY Version Version 1 Ratified By Date Ratified PROPOSED FOR APPROVAL 15/11/12 Author(s) Responsible Committee / Officers Date Issue November 2012 Review Date November 2013 Intended

More information

Single Electricity Market

Single Electricity Market Single Electricity Market SEM R2.0.0 INTRA-DAY TRADING MARKET TRIAL APPROACH COPYRIGHT NOTICE All rights reserved. This entire publication is subject to the laws of copyright. This publication may not

More information

Pre Delegation Testing (PDT) Frequently Asked Questions (FAQ)

Pre Delegation Testing (PDT) Frequently Asked Questions (FAQ) Pre Delegation Testing (PDT) Frequently Asked Questions (FAQ) [Ver 1.7 2013-06- 04] List of contents General questions Who do I contact with questions about Pre- Delegation Testing?... 3 What is the process

More information

EPS R2 Transition and Smartcards

EPS R2 Transition and Smartcards EPS R2 Project EPS R2 Transition and Smartcards Guidance for Community Pharmacists and Pharmacies NHS smart card support is available from the SWCS Registration Authority. Contact the IT Service Desk 8:30am

More information

Information Governance in Commissioning. Mental Health Commissioners Collaborative

Information Governance in Commissioning. Mental Health Commissioners Collaborative Information Governance in Commissioning Mental Health Commissioners Collaborative Introduction David Stone Head of Information Governance Apira Limited david.stone@apira.co.uk 07947 052704 2011/12 Standard

More information

DATA QUALITY POLICY IM&T DEPARTMENT

DATA QUALITY POLICY IM&T DEPARTMENT DATA QUALITY POLICY 2016 2019 IM&T DEPARTMENT This document should be read in conjunction with the Data Quality Strategy Record Keeping and Records Management Policy Version: 1 Ratified by: Senior Managers

More information

Information Governance Strategy :

Information Governance Strategy : Item 11 Strategy Strategy : Date Issued: Date To Be Reviewed: VOY xx Annually 1 Policy Title: Strategy Supersedes: All previous Strategies 18/12/13: Initial draft Description of Amendments 19/12/13: Update

More information

NHS Information Standards Board

NHS Information Standards Board NHS Information Standards Board DSC Notice: 08/2001* Date of Issue: March 2001 Subject: Inclusion of Nurse Activity in Admitted Patient Care CDSs/HES. Implementation date: 01 April 2002 DATA SET CHANGE

More information

EHR Interoperability Framework Overview

EHR Interoperability Framework Overview Hospital Health Information System EU HIS Contract No. IPA/2012/283-805 Final version July 2015 Visibility: Public Target Audience: EHR Developers EHR Administrators EPR Systems Developers This document

More information

Bucks PSN. Updata Self-Service Portal User Guide. Version 1.0

Bucks PSN. Updata Self-Service Portal User Guide. Version 1.0 Bucks PSN Updata Self-Service Portal User Guide Version 1.0 Updata Infrastructure Ltd Page 2 of 4 The Updata Self-Service Portal The Updata Self-service Portal is a web based online portal which enables

More information

Haslemere Health Centre & Grayshott Surgery Commissioning Data Quality Audit Report

Haslemere Health Centre & Grayshott Surgery Commissioning Data Quality Audit Report Haslemere Health Centre & Grayshott Surgery Commissioning Data Quality Audit Report October 2010: Results from historic analysis This report covers the findings of a pilot which we were commissioned to

More information

HSCIC Post Audit Review of Data Sharing Activities:

HSCIC Post Audit Review of Data Sharing Activities: Directorate / Programme Data Dissemination Services Project / Work Data Sharing Audits Status Final Acting Director Chris Roebuck Version 1.0 Owner Rob Shaw Version issue date 16-Jun-2015 HSCIC Post Audit

More information

www.gov.uk/monitor The maternity pathway payment system: Supplementary guidance

www.gov.uk/monitor The maternity pathway payment system: Supplementary guidance www.gov.uk/monitor The maternity pathway payment system: Supplementary guidance Contents Introduction... 3 Inclusions and exclusions from the pathway payments... 4 Early pregnancy unit and emergency gynaecology

More information

Use of tablet devices in NHS environments: Good Practice Guideline

Use of tablet devices in NHS environments: Good Practice Guideline Use of Tablet Devices in NHS environments: Good Practice Guidelines Programme NPFIT Document Record ID Key Sub-Prog / Project Technology Office Prog. Director Chris Wilber Status APPROVED Owner James Wood

More information

European Commission Directorate General for HOME AFFAIRS. Guide for applicants. Call for expression of interest HOME/2014/AMIH/001

European Commission Directorate General for HOME AFFAIRS. Guide for applicants. Call for expression of interest HOME/2014/AMIH/001 European Commission Directorate General for HOME AFFAIRS Guide for applicants Call for expression of interest HOME/2014/AMIH/001 for the establishment of a list of individual external experts to assist

More information

Data Network Security Policy

Data Network Security Policy Authors: Mike Smith Rod Makosch Network Manager Data Security Officer IM&T IM&T Version No : 1 Approval Date: March 2005 Approved by : John Aird Director of IM&T Review Date : 1 April 2006 Trust Ref: C7/2005

More information

South East Coast Ambulance Service NHS Trust. Information Governance Working Group. Terms of Reference

South East Coast Ambulance Service NHS Trust. Information Governance Working Group. Terms of Reference South East Coast Ambulance Service NHS Trust Information Governance Working Group Terms of Reference 1. Constitution 1.1. The Board hereby resolves to establish a Working Group of the Risk Management &

More information

Data Access Request Service

Data Access Request Service Data Access Request Service Guidance Notes on Security Version: 4.0 Date: 01/04/2015 1 Copyright 2014, Health and Social Care Information Centre. Introduction This security guidance is for organisations

More information

Securing excellence in GP IT Services

Securing excellence in GP IT Services Securing excellence in GP IT Services Operating Model December 2012 Table of Contents 01 Glossary of terms 02 Preface 03 Introduction Background Purpose 04 GP IT services commissioning 05 06 07 GP IT scope

More information

METHODOLOGY TO CREATE PROVIDER AND CIP SPELLS FROM HES APC DATA

METHODOLOGY TO CREATE PROVIDER AND CIP SPELLS FROM HES APC DATA METHODOLOGY TO CREATE PROVIDER AND CIP SPELLS FROM HES APC DATA 1 Contents Introduction... 3 Episodes and Spells... 3 Types of Spells... 4 Provider spell... 4 Continuous Inpatient (CIP) spell... 4 Methodology

More information

HSCIC Audit of Data Sharing Activities:

HSCIC Audit of Data Sharing Activities: Directorate / Programme Data Dissemination Services Project Data Sharing Audits Status Approved Director Terry Hill Version 1.0 Owner Rob Shaw Version issue date 26/10/2015 HSCIC Audit of Data Sharing

More information

APLICATION TRACKING SYSTEM USER MANUAL FOR APPLICANT

APLICATION TRACKING SYSTEM USER MANUAL FOR APPLICANT APLICATION TRACKING SYSTEM USER MANUAL FOR APPLICANT Version: 1.0 Status: Final Date: 18-Nov-2014 Prepared by: NKC Projects TABLE OF CONTENTS Page 1 CHAPTER Page No INTRODUCTION... 3 ATS HOME PAGE... 4

More information

esupport Portal RightCrowd SureSite

esupport Portal RightCrowd SureSite esupport Portal RightCrowd SureSite Table of Contents 1 Introduction... 3 2 RightCrowd esupport Portal... 4 2.1 Overview... 4 2.2 esupport Portal... 5 2.3 Placing a new ticket with the Support Team...

More information

Information Governance Strategy. Version No 2.0

Information Governance Strategy. Version No 2.0 Plymouth Community Healthcare CIC Information Governance Strategy Version No 2.0 Notice to staff using a paper copy of this guidance. The policies and procedures page of PCH Intranet holds the most recent

More information

Health Care Provider Guide

Health Care Provider Guide Health Care Provider Guide Diagnostic Imaging Common Service Project, Release 1 Version: 1.4 Copyright Notice Copyright 2014, ehealth Ontario All rights reserved No part of this document may be reproduced

More information

Information Governance Policy

Information Governance Policy Information Governance Policy Version: 4 Bodies consulted: Caldicott Guardian, IM&T Directors Approved by: MT Date Approved: 27/10/2015 Lead Manager: Governance Manager Responsible Director: SIRO Date

More information

International Review of Data Quality

International Review of Data Quality April 2011 Safer Better Care About the The is the independent Authority established to drive continuous improvement in Ireland s health and social care services. The Authority s mandate extends across

More information

E-Mail, Calendar and Messaging Services Good Practice Guideline

E-Mail, Calendar and Messaging Services Good Practice Guideline E-Mail, Calendar and Messaging Services Good Practice Guideline Programme NPFIT Document Record ID Key Sub-Prog / Project Information Governance NPFIT-FNT-TO-IG-GPG-0017.01 Prog. Director Mark Ferrar Status

More information

National Institute for Health Research Coordinated System for gaining NHS Permission (NIHR CSP)

National Institute for Health Research Coordinated System for gaining NHS Permission (NIHR CSP) National Institute for Health Research Coordinated System for gaining NHS Permission (NIHR CSP) Operating Manual Please check the CRN Website for the latest version. Version: 6.0 Status: Consultation in

More information

Information Governance Toolkit. Getting Started for NHS Business Partners/Independent Treatment Centres/Arms Length Bodies

Information Governance Toolkit. Getting Started for NHS Business Partners/Independent Treatment Centres/Arms Length Bodies Information Governance Toolkit Getting Started for NHS Business Partners/Independent Treatment Centres/Arms Length Bodies Page 1 of 11 Getting Started for NHS Business Partners/Independent Treatment Centres/Arms

More information

INFORMATION GOVERNANCE POLICY

INFORMATION GOVERNANCE POLICY INFORMATION GOVERNANCE POLICY Name of Policy Author: Name of Review/Development Body: Ratification Body: Ruth Drewett Information Governance Steering Group Committee Trust Board : April 2015 Review date:

More information

Comprehensive Spending Review 2007 covering the period 2008-2011

Comprehensive Spending Review 2007 covering the period 2008-2011 MEASURING UP HOW GOOD ARE THE GOVERNMENT S DATA SYSTEMS FOR MONITORING PERFORMANCE AGAINST PUBLIC SERVICE AGREEMENTS? JUNE 2010 Comprehensive Spending Review 2007 covering the period 2008-2011 Review of

More information

Policy Document Control Page

Policy Document Control Page Policy Document Control Page Title Title: Information Governance Policy Version: 5 Reference Number: CO44 Keywords: Information Governance Supersedes Supersedes: Version 4 Description of Amendment(s):

More information

Information Governance. A Clinician s Guide to Record Standards Part 1: Why standardise the structure and content of medical records?

Information Governance. A Clinician s Guide to Record Standards Part 1: Why standardise the structure and content of medical records? Information Governance A Clinician s Guide to Record Standards Part 1: Why standardise the structure and content of medical records? Contents Page 3 A guide for clinicians Pages 4 and 5 Why have standards

More information

Telstra Wholesale Digital Certificates

Telstra Wholesale Digital Certificates Telstra Wholesale Digital Certificates LinxOnline User Guide Issue Number 2, 31 July 2007 Version 2, 31 July 2007 TW Digital Certificate Management User Guide Copyright 2007, Telstra Corporation Limited.

More information

Service Desk Management Process

Service Desk Management Process Service Desk Management Process [Month, year] Document No. : Version.Rev : Authorized by: Signature/: Date Prepared by Title Location Version no. Version date Document control sheet Contact for enquiries

More information

The Foundation FE Summary Guidance: SIR 22 (2013/14) V1.0

The Foundation FE Summary Guidance: SIR 22 (2013/14) V1.0 The Foundation FE Summary Guidance: SIR 22 (2013/14) V1.0 The Education and Training Foundation 2014 Table of Contents Table of Contents... 2 Introduction... 3 Background to the collection... 3 Collection

More information

EMR Company Registration and User Management

EMR Company Registration and User Management EMR Company Registration and User Management Guidance document for EMR participants User Support Guide for EMR Company Registration and User Management 02 nd July 2015 National Grid Electricity Transmission

More information

Methodology for creation of the HES Patient ID (HESID)

Methodology for creation of the HES Patient ID (HESID) Methodology for creation of the HES Patient ID (HESID) Version Control Version Date Author Reason for change 2.0 21/05/2014 HES Development Team Reviewed & updated text explaining the 3 pass matching process

More information

Page 41. Briefing Note: Sharing Data with and Connecting to the NHS Overview HEALTH AND WELL BEING SCRUTINY COMMITTEE 9 JULY 2009

Page 41. Briefing Note: Sharing Data with and Connecting to the NHS Overview HEALTH AND WELL BEING SCRUTINY COMMITTEE 9 JULY 2009 Page 41 Agenda Item 7 HEALTH AND WELL BEING SCRUTINY COMMITTEE 9 JULY 2009 Sharing Data with and Connecting to the NHS Overview 1 Background 1.1 This briefing paper explores the options we have in order

More information

TERMS OF REFERENCE: REVIEW OF THE INFORMATION GOVERNANCE TOOLKIT

TERMS OF REFERENCE: REVIEW OF THE INFORMATION GOVERNANCE TOOLKIT TERMS OF REFERENCE: REVIEW OF THE INFORMATION GOVERNANCE TOOLKIT The Information Governance Professional Leadership Group hosted by the NHS Commissioning Board is committed to conducting a strategic review

More information

NHS inpatient elective admission events and outpatient referrals and attendances

NHS inpatient elective admission events and outpatient referrals and attendances NHS inpatient elective admission events and outpatient referrals and attendances Quarter Ending December 2013 Commentary o Key Points o Time Series Graphs Statistical Notes o National Statistics o Quarterly

More information

HSCIC Audit of Data Sharing Activities:

HSCIC Audit of Data Sharing Activities: Directorate / Programme Data Dissemination Services Project / Work Data Sharing Audits Status Final Acting Director Chris Roebuck Version 1.0 Owner Rob Shaw Version issue date 19-Jan-2015 HSCIC Audit of

More information

Information Governance Strategy

Information Governance Strategy Information Governance Strategy To whom this document applies: All Trust staff, including agency and contractors Procedural Documents Approval Committee Issue Date: January 2010 Version 1 Document reference:

More information

Information Governance Policy

Information Governance Policy BEXLEY CARE TRUST MANAGEMENT MANUAL Title: INFORMATION GOVERNANCE POLICY Originating Department: IT DEPARTMENT Authorised by: Risk Management Committee June 2008 Reference no: CA12 Date of Issue: JANUARY

More information

Lauren Hamill, Information Governance Officer. Version Release Author/Reviewer Date Changes (Please identify page no.) 1.0 L.

Lauren Hamill, Information Governance Officer. Version Release Author/Reviewer Date Changes (Please identify page no.) 1.0 L. Document No: IG10d Version: 1.1 Name of Procedure: Third Party Due Diligence Assessment Author: Release Date: Review Date: Lauren Hamill, Information Governance Officer Version Control Version Release

More information

Spillemyndigheden s Certification Programme Information Security Management System

Spillemyndigheden s Certification Programme Information Security Management System SCP.03.00.EN.1.0 Table of contents Table of contents... 2 1 Objectives of the... 3 1.1 Scope of this document... 3 1.2 Version... 3 2 Certification... 3 2.1 Certification frequency... 3 2.1.1 Initial certification...

More information

Choosing A CMS. Enterprise CMS. Web CMS. Online and beyond. Best-of-Breed Content Management Systems. 1300 762 912 info@ares.com.

Choosing A CMS. Enterprise CMS. Web CMS. Online and beyond. Best-of-Breed Content Management Systems. 1300 762 912 info@ares.com. Web CMS Enterprise CMS 1300 762 912 info@ares.com.au Sydney 275 alfred st north sydney nsw 2060 Melbourne 21 burwood road hawthorn vic 3122 Choosing A CMS Best-of-Breed Content Management Systems Brisbane

More information

Emergency Care Weekly Situation Report Standard Specification

Emergency Care Weekly Situation Report Standard Specification Title Emergency Care Weekly Situation Report Specification Document ID ISB 1607 Specification Sponsor Sarah Butler, DH Status FINAL Developer Paul Steele Version 1.0 Author Paul Steele Version Date 19/03/2014

More information

Practice management system criteria checklist

Practice management system criteria checklist Practice management system criteria checklist The American Medical Association (AMA) and Medical Group Management Association (MGMA) have created the following checklist as a starting point for assessing

More information

YMDDIRIEDOLAETH GIG CEREDIGION A CHANOLBARTH CYMRU CEREDIGION AND MID WALES NHS TRUST PC SECURITY POLICY

YMDDIRIEDOLAETH GIG CEREDIGION A CHANOLBARTH CYMRU CEREDIGION AND MID WALES NHS TRUST PC SECURITY POLICY YMDDIRIEDOLAETH GIG CEREDIGION A CHANOLBARTH CYMRU CEREDIGION AND MID WALES NHS TRUST PC SECURITY POLICY Author Head of IT Equality impact Low Original Date September 2003 Equality No This Revision September

More information

Background Information

Background Information User Guide 1 Background Information ********************************Disclaimer******************************************** This is a government system intended for official use only. Using this system

More information

North West Core Skills Programme. Information Governance Implications

North West Core Skills Programme. Information Governance Implications North West Core Skills Programme Information Governance Implications Version number: 0.3 Author: Mike Farrell, North West Core Skills Programme Effective from: October 2012 Due for review on: October 2013

More information

Provider Electronic Solutions Trading Partner Testing Packet

Provider Electronic Solutions Trading Partner Testing Packet Provider Electronic Solutions Trading Partner Testing Packet Information in this ForwardHealth Provider Electronic Solutions (PES) Trading Partner Testing Packet is provided to s who intend to exchange

More information

INFORMATION GOVERNANCE OPERATING POLICY & FRAMEWORK

INFORMATION GOVERNANCE OPERATING POLICY & FRAMEWORK INFORMATION GOVERNANCE OPERATING POLICY & FRAMEWORK Log / Control Sheet Responsible Officer: Chief Finance Officer Clinical Lead: Dr J Parker, Caldicott Guardian Author: Associate IG Specialist, Yorkshire

More information

D-CRIS Information Governance Assurance

D-CRIS Information Governance Assurance D-CRIS Information Governance Assurance Date: 05 08 2013 Version: 1.0 Author: Murat Soncul Contents 1. Introduction... 3 2. CRIS Security Model... 3 3. SLaM Information Governance Framework... 4 4. Roles

More information

INFORMATION GOVERNANCE STAFF HANDBOOK

INFORMATION GOVERNANCE STAFF HANDBOOK INFORMATION GOVERNANCE STAFF HANDBOOK Contents Why do YOU need to know about Information Governance (IG)?... 2 Keeping Information Safe... 2 Confidentiality... 2 Deciding to Communicate Important Information...

More information