Data and securityCyber SecurityNHS Digital launches new data security toolkit

NHS Digital launches new data security toolkit

New Data Security and Protection Toolkit replaces the previous Information Governance Toolkit

NHS Digital has launched the new Data Security and Protection Toolkit, replacing the previous Information Governance Toolkit, to help keep patient information safe.

The Data Security and Protection Toolkit is an online self-assessment tool that enables health and social care organisations to measure and publish their performance against the National Data Guardian’s ten data security standards.

All organisations that have access to NHS patient data and systems – including NHS Trusts, primary care and social care providers and commercial third parties – must complete the Toolkit to provide assurance that they are practising good data security and that personal information is handled correctly.

Dan Taylor, Programme Director for the Data Security Centre at NHS Digital, said: “The Data Security and Protection Toolkit is a powerful tool which health and care organisations will use to assess their cyber preparedness. This launch marks the start of a journey, with the Toolkit forming a foundation for long-term improvements in patient data security. The Toolkit is part of a number of new initiatives to build public trust in the way we secure their data.”

The Toolkit has been developed to be easier to use and with a simpler format, achieved through user feedback and significant engagement with colleagues across health and care. It is also designed to help organisations measure themselves against the National Data Guardian’s ten data security standards and key elements of GDPR.

Organisations which provide health services or connect to national systems will be required to complete the Toolkit annually. It will also support existing best practice, such as ISO27001 and Cyber Essentials Plus. This means where organisations already have accreditation, they will not be expected to complete all elements of the Toolkit, rewarding organisations which have already invested in recognised standards.

Over the course of the next year, working closely with the Care Quality Commission (CQC), elements of the Toolkit will be used to support the CQC’s Well Led inspections.

For more information, and to access the Data Security and Protection Toolkit, go to: https://www.digital.nhs.uk/data-security-protection-toolkit

Related Articles

Q&A: How cyber security is changing in the public sector

Cyber Security Q&A: How cyber security is changing in the public sector

1m Austin Clark
NCSC defends UK from more than 10 cyber attacks a week

Cyber Security NCSC defends UK from more than 10 cyber attacks a week

2m Austin Clark
GDS clarifies private sector access to GOV.UK Verify

Cyber Security GDS clarifies private sector access to GOV.UK Verify

2m Austin Clark
Is automation essential in the cyber security battle?

Cyber Security Is automation essential in the cyber security battle?

3m Austin Clark
Please mind the security gap between the premises and the cloud

Cloud Computing Please mind the security gap between the premises and the cloud

3m Guest Writer
NHS trusts not discouraging WhatsApp, Facebook Messenger and other consumer apps

Cyber Security NHS trusts not discouraging WhatsApp, Facebook Messenger and other consumer apps

3m Austin Clark
Best form of defence: Is the Government's cyber strategy on the right track?

Cyber Security Best form of defence: Is the Government's cyber strategy on the right track?

4m Guest Writer
Making the cloud a safe space

Cloud Computing Making the cloud a safe space

4m Guest Writer