Schedule 13 - NHS Counter Fraud and Security



Similar documents
NHS COUNTER-FRAUD AND SECURITY MANAGEMENT

TRUST SECURITY MANAGEMENT POLICY

APPENDIX II Checklist

Corporate. Security Management Policy. Document Control Summary. Contents

Director of Organisational Development & Workforce DISCIPLINARY POLICY

SWIMMING AUSTRALIA LIMITED GAMBLING, BETTING AND MATCH FIXING POLICY. Swimming Australia Limited - Gambling, Betting and Match Fixing Policy Page 1

Fraud Investigation Officer

A Professional Approach to Managing Security in the NHS

OLAF: Decision on Measures to Combat Fraud

Risk & Compliance Committee Charter. HCF Life Insurance Company Pty Ltd (ACN ) (the Company )

How To Use A Corporate Credit Card

GUIDANCE FOR EMPLOYED BARRISTERS. Part 1. General

Reporting of Suspected or Actual Child Abuse and Neglect

STATE OF NEVADA DEPARTMENT OF HEALTH AND HUMAN SERVICES BUSINESS ASSOCIATE ADDENDUM

Auditing data protection a guide to ICO data protection audits

PostNL Group Policy. on Fraud Prevention. PostNL Group Policy. on Fraud Prevention Page 1 of 15

Policies for: Information Governance Information Quality Information Management Information Security. Version Control Version: 0.1

BUSINESS ASSOCIATE AGREEMENT BETWEEN AND COMMISSION ON ACCREDITATION, AMERICAN PSYCHOLOGICAL ASSOCIATION

The best advice before you decide on what action to take is to seek the advice of one of the specialist Whistleblowing teams.

Applying appropriate sanctions consistently

Police Officers who Commit Domestic Violence-Related Criminal Offences 1

CHAPTER Committee Substitute for Committee Substitute for Committee Substitute for House Bill No. 1033

Closed Circuit Television (CCTV) code of practice. Based on the publication A Code of Practice for CCTV

BUSINESS ASSOCIATE AGREEMENT ( BAA )

Violence against staff

Share trading policy. Lynas Corporation Limited ACN

Risk & Compliance Committee Charter. HCF Life Insurance Company Pty Limited (ACN ) (the Company )

2015 No FINANCIAL SERVICES AND MARKETS. The Small and Medium Sized Business (Credit Information) Regulations 2015

The NHS Counter Fraud Strategy

MORUMBI RESOURCES LTD. CORPORATE GOVERNANCE GUIDELINES

Ethical Investment Advisory Group

Payment Standard. Benefits Service

INVESTIGATING COMPLAINTS AND ALLEGATIONS AGAINST EMPLOYEES POLICY AND PROCEDURE

Council Tax Reduction Anti-Fraud Policy

2015 No FINANCIAL SERVICES AND MARKETS. The Small and Medium Sized Businesses (Credit Information) Regulations 2015

Securities trading policy

COUNCIL TAX REDUCTION, DISCOUNT & EXEMPTION ANTI- FRAUD POLICY

NHS Business Services Authority Information Security Policy

BUSINESS ASSOCIATE AGREEMENT

University of Birmingham. Closed Circuit Television (CCTV) Code of Practice

ITEC Malpractice & Maladministration Policy

CHECKLIST OF COMPLIANCE WITH THE CIPFA CODE OF PRACTICE FOR INTERNAL AUDIT

1.1 Terms of Reference Y P N Comments/Areas for Improvement

Dr. Adam Apfelblat 5140 Highland Road Waterford Phone: (248) Fax: (248)

QUEENSLAND COUNTRY HEALTH FUND. privacy policy. Queensland Country Health Fund Ltd ABN better health cover shouldn t hurt

CODE OF ETHICS AND BUSINESS CONDUCT

Act CLXV of on Complaints and Public Interest Disclosures. 1. Complaint and public interest disclosure

Business Continuity Policy and Business Continuity Management System

Whistle Blower Policy

Data Protection Policy

Staff Investigation Protocol

Crimes (Computer Hacking)

MERGER BETWEEN BRITISH AEROSPACE PLC AND THE MARCONI ELECTRONIC SYSTEMS BUSINESS OF THE GENERAL ELECTRIC COMPANY PLC

Ford & Thomas Insurance Agency

Whistleblower Protection Policy

CODE GOVERNANCE COMMITTEE CHARTER. 1 Functions and responsibilities of the Code Governance Committee

Sample Business Associate Agreement Provisions

Smart Meters Programme Schedule 2.5. (Security Management Plan) (CSP South version)

Information Governance Policy

SHARE TRADING POLICY

2015 No FINANCIAL SERVICES AND MARKETS. The Small and Medium Sized Business (Finance Platforms) Regulations 2015

Notice of Privacy Practices. Human Resources Division Employees Benefits Section

River Valley Therapy & Sports Medicine, Inc. Notice of Privacy Practices

Overpayments, Underpayment & Incorrect Payments Policy

Information Security Incident Management Policy September 2013

HIPAA BUSINESS ASSOCIATE AGREEMENT

Business Associate Agreement

HIPAA Privacy and Business Associate Agreement

HIPAA Privacy Rule Policies

The Amendment of the Loan Agreement (for Business)/ Overdraft Facility Agreement (for Consumption)/ Money Mortgage Agreement*

INSURANCE INTERMEDIARIES (GENERAL BUSINESS) ACT 1996 (As it has effect at 1st June 1999)

Small Business Grants (Employment Incentive) Act 2015 No 14

POLICY ON FRAUD, MALPRACTICE AND IRREGULARITY

Authorisation Requirements and Standards for Debt Management Firms

POLICIES AND PROCEDURES DISCIPLINARY POLICY

Should an investigation be undertaken into your centre, the head of centre must:

BUSINESS ASSOCIATE AGREEMENT

Compliance Guidelines

DISCIPLINARY POLICY. 1. Introduction. 2. Structured support. 3. Formal action process 3.1. Investigations. 4. Notes of the Hearing and Investigation

Royal National Hospital for Rheumatic Diseases

NORTH YORKSHIRE FIRE AND RESCUE AUTHORITY FINANCIAL MANAGEMENT FRAMEWORK SECTION A INTRODUCTION

How To Write A Stock Exchange Contract

Statutory duty of candour with criminal sanctions Briefing paper on existing accountability mechanisms

This statement sets out the policy of Amcor Limited ( Amcor ) for trading in Securities of Amcor. It applies to:

Casino, Liquor and Gaming Control Authority Act 2007 No 91

Public Audit (Wales) Act 2004

BUSINESS ASSOCIATE AGREEMENT

CITRIX SYSTEMS, INC. CORPORATE GOVERNANCE GUIDELINES

Disciplinary Policy and Procedure

BUSINESS ASSOCIATE AGREEMENT. Recitals

NOTICE OF PRIVACY PRACTICES Walter Chiropractic Clinic, 5219 Peters Creek Rd Ste 5, Roanoke VA 24019

Safer recruitment scheme for the issue of alert notices for healthcare professionals in England

Transcription:

1. In this Schedule 13: Schedule 13 - NHS Counter Fraud and Security 1.1 CFSMS means the Special Health Authority established by the Counter Fraud and Security Management Service (Establishment and Constitution Order 2002); 1.2 LCFS means a local counter fraud specialist appointed by the Provider in accordance with Paragraphs 14, 16, 17 and 18; 1.3 LSMS means a local security management specialist appointed by the Provider in accordance with Paragraphs15, 16 and 18; 1.4 Counter Fraud Professionals Accreditation Board means the training organisation having that name or any successor organisation; and 1.5 in the NHS Fraud and Corruption Manual all references to NHS Body shall be read as the Provider and Secretary of State directions shall be read as provisions of, and matter to be done pursuant to this Agreement 1.6 References to Paragraphs are to paragraphs of this Schedule 2. The Provider shall 2.1 take all necessary steps to counter fraud relating to the functions 2.2 promote and protect the security of Patients and its Staff, property and information in accordance with this Schedule [13] 3. The Provider shall co-operate with the CFSMS to enable the CFSMS efficiently and effectively to carry out its functions in relation to counter fraud and security management and for those purposes shall (subject to Paragraph 6): 3.1 enable CFSMS to have reasonable access to the Provider s Premises; 3.2 put in place arrangements which will enable CFSMS to have reasonable access to, and to interview Staff; and 3.3 supply such information including files and other data (whether in electronic or manual form) as the CFSMS may require. 4. In the case of information required under Paragraph 3.3 relating to CFSMS responsibility for quality inspection, fraud measurement, national proactive exercises in fraud prevention, reviews and inspections, or relating to quality inspection and risk assessment for security measures, the Provider shall respond to any reasonable request from CFSMS as soon as practicable.

5. In the case of information required under Paragraph 3.3 relating to CFSMS counter fraud or security investigation functions, the Provider shall respond to any request from CFSMS as soon as practicable and in any event within 7 days after the date on which the request was made. 6. Nothing in Paragraph 3.2 shall contravene any right any Staff may have to refuse to be interviewed and nothing In Paragraph 3.3 obliges or permits the Provider to supply any information disclosure of which is prohibited by Law, contract or obligation of confidentiality. 7. The Provider shall act in accordance with: 7.1 the NHS Counter Fraud and Corruption Manual 7.2 the NHS Security Management Manual: 7.3 the policy statement Applying appropriate sanctions consistently published by the CFSMS and available at www.cfsms.nhs.uk; and 7.4 other reasonable guidance or manuals of CFSMS, as they may from time to time be amended or re-issued 8. Without prejudice to the generality of Paragraph 7 (but subject to Paragraph 6) the Provider shall comply with the requirements specified in the NHS Counter Fraud and Corruption Manual concerning: 8.1 the arrangements for reporting fraud cases to its LCFS and to its audit committee and its auditors; 8.2 the arrangements for agreeing to undertake a criminal prosecution and to refer the matter to the police; 8.3 the confidentiality of information relevant to the investigation of suspected fraud; 8.4 the arrangements for its LCFS to report weaknesses, in fraud related systems to CFSMS and the Provider s audit committee and auditors; and 8.5 the arrangements for gathering information to enable the Provider s Director of Finance to seek recovery of money lost through fraud. 9. The Provider shall ensure that its Chief Executive, Director of Finance and Security Management Executive Director shall monitor and ensure compliance with the Provider s obligations under Paragraphs 2 to 8 inclusive. Designation of Directors with responsibility for security management measures 10. The Provider shall (if it has not previously done so) within 6 weeks after the date of this Agreement designate:

10.1 one of its non-executive Directors to promote security management measures; and 10.2 one of its Executive Directors to undertake specific responsibility for security management measures. 11. A further designation shall be made within 3 months of the date on which the Provider first anticipates that there is to be a vacancy for any person referred to in Paragraph 10. 12. The Provider shall ensure that each person so designated receives appropriate training in connection with counter fraud measures provided by the CFSMS. 13. The relevant information regarding details of the persons designated under Paragraph 10 shall be notified to CFSMS within 7 days after each designation. Nomination and appointment of Local Counter Fraud Specialist and Local Security Management Specialist 14. The Provider shall nominate at least one person whom it proposes to appoint as its LCFS, within 6 weeks after the date of this Agreement, and: 14.1 the person so nominated may be either employed by the Provider or a person whose services are supplied to it by an outside organisation: 14.2 the name of the nominee shall be notified to the CFSMS together with the information specified in the NHS Counter Fraud and Corruption Manual, within 7 days after the nomination; and 14.3 before making a nomination the Provider shall take into account any guidance issued by the CFSMS on the suitability for an LCFS. 15. The Provider shall nominate at least one person that it proposes to appoint as its LSMS within 6 weeks after the date of this Agreement; and 15.1 the name of the nominee shall be notified to the CFSMS within 7 days of that nomination; and 15.2 before making any such nomination the Provider shall take into account any guidance issued by CFSMS on the suitability criteria for a LSMS. 16. After a person nominated by the Provider has: 16.1 been approved by the CFSMS as a person suitable for appointment as LCFS or LSMS; 16.2 successfully completed any training required by the CFSMS; and 16.3 in the case of LCFS, been accredited by the Counter Fraud Professional Accreditation Board,

the Provider may appoint the person as its LCFS or LSMS in accordance with such approval. 17. If the Provider nominates a person whose services as its LCFS are provided by an outside organisation, it shall comply with the requirements of CFSMS as to the suitability of the nominee, and satisfy itself and CFSMS that the terms for the provision of the services will enable the nominee to carry out LCFS functions effectively (and in particular that the nominee will devote sufficient time them), and give to the CFSMS a copy of the contract under which the services of the LCFS are supplied to it. 18. Further nomination shall be made within 3 months of the date on which the Provider first anticipates that there is to be a vacancy for its LCFS or its LSMS and the provisions of Paragraphs 14 to 17 inclusive shall apply to any such nomination and subsequent appointment. Responsibilities and functions of the Local Counter Fraud Specialist and Local Security Management Specialist 19. The Provider shall specify a job description for its LCFS which includes the operational and liaison responsibilities specified by the CFSMS. 20. A LCFS shall report directly to the Provider s Director of Finance. 21. A LCFS shall not undertake responsibility for or be in any way engaged in the management of security. 22. A LSMS shall report directly to the Provider s Executive Director designated under Paragraph 10.3 and have the responsibilities set out in his workplan completed under Paragraph 24.2. 23. A LSMS shall not undertake responsibility for, or in any way be engaged in any counter fraud activities. Responsibilities of the Provider in relation to Local Counter Fraud Specialist and Local Security Management Specialist 24 The Provider shall put effective arrangements in place to: 24.1 ensure that in addition to the job description mentioned in Paragraph 19 the LCFS and the Director of Finance agree a written work plan which outlines the LCFS projected work for and within 1 month after the beginning of each Contract Year, by reference to the seven generic areas of counter fraud activity set out in the NHS Counter Fraud and Corruption Manual; 24.2 ensure that its LSMS and its Executive Director designated under Paragraph 10.3 agree a written work plan for the LSMS projected work for, and within 1 month after the beginning of each Contract Year; 24.3 enable its LCFS to attend the Provider s audit committee meetings and its LSMS to attend its risk management and audit committee meetings;

24.4 ensure that its LCFS provide a written report, at least once in each Contract Year, summarising the LCFS counter fraud work by reference to the seven generic arrears of activity set out in the NHS Counter Fraud and Corruption Manual; 24.5 ensure that its LSMS provides a written report, at least once in each Contract Year, summarising the LSMS work for that year to the Provider s Executive Director designated under Paragraph 10.3; 24.6 ensure that full and accurate records are kept, by the LCFS of any instances of fraud and suspected fraud and by the LSMS of any breaches or suspected breaches of security; 24.7 ensure that any weaknesses in fraud related systems and any other matters which may have fraud related implications for the Provider are reported to its LCFS and that its LCFS reports them to CFSMS; 24.8 ensure that any weaknesses in security related systems of the Provider or other matters which may have implications for security management are reported to its LSMS and that its LSMS reports them to CFSMS; 24.9 ensure that breaches in security and weaknesses in security related systems are reported to: 24.9.1 the Provider s LSMS; and 24.9.2 where appropriate, and having regard to CFSMS guidance, to CFSMS and to the Provider s audit committee, auditors and risk management committee; 24.9.3 where cost effective, it seeks to recover money lost by the Provider through breaches of security 24.10 ensure that its LCFS and its LSMS has all necessary support including access to the CFSMS secure intranet site to enable him efficiently and effectively to carry out his responsibilities; 24.11 subject to Paragraph 6, ensure that all its Staff co-operate with the LCFS and the LSMS and in particular that those responsible for human resources disclose information which arises in connection with any matters (including disciplinary matters) which may have implications in relation to the investigation, prevention or detection of fraud or breaches of security; 24.12 enable its LCFS and its LSMS to receive training recommended by the CFSMS; 24.13 ensure that its LCFS, it s LSMS and its Staff and any person whose services are provided to the Provider in connection with counter fraud work to have regard to guidance and advice on media handling of counter fraud matters which may be issued by the CFSMS;

24.14 participate in activities in which the CFSMS is engaged, including national anti-fraud measures and security management, where requested; 24.15 enable its LCFS and its LSMS to work in conditions of sufficient security and privacy to protect the confidentiality of his work; and 24.16 enable its LCFS and its LSMS generally to perform his functions effectively, efficiently and promptly. Physical and non-physical assault 25 In the event of physical or non-physical assault on a member of Staff as described in the Security Management Manual and guidance on tackling physical and non-physical assault issued by the CFSMS, the Provider s Executive Director designated under Paragraph 10.3 shall ensure that the instructions contained in the Manual are complied with, that is to say he shall put in place effective arrangements to ensure that: 25.1 in all cases, he is informed of the incident; 25.2 in all cases of physical assault, the police are contacted immediately where appropriate either by the person assaulted or by an appropriate manager or colleague and that full co-operation is given to the police in any investigation; 25.2 in cases of physical assault, CFSMS is informed of the incident and that full co-operation is given to it in any investigation or subsequent action which it considers appropriate; 25.3 in appropriate cases of non-physical assault, the police are contacted as soon as reasonably practicable and that full co-operation is given to the police in any subsequent investigation; 25.4 in any case of non-physical assault, where the police decide not to prosecute, the Provider considers what action, if any, it should take, and in particular considers whether private prosecution or civil proceedings would be appropriate; 25.5 in all cases, the details are recorded in accordance with the Provider s incident reporting system; and 25.6 in all cases, the victim of the assault is informed of the investigation s progress and offered any necessary support.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information