With the start to the new year we are please to announce we have met the standard 2021/22 for the Data Security & Protection Toolkit Status
As we start to push out tool our within the National Health Services we will continue to develop and understand the needs of the toolkit.
What is the Data Security Protection Toolkit?
This is an online self-assessment tool that allows organisations to measure their performance against the National Data Guardian’s 10 data security standards.
It is also an annual assessment. As data security standards evolve, the requirements of the DSPT are reviewed and updated to ensure they are aligned with current best practice from the NCSC and CISA. Organisations with access to NHS patient data must therefore review and submit their annual assessment each year before the deadline.
The DSPT also provides health and care organisations with a means of reporting security incidents and data breaches.
All organisations that have access to NHS patient information must provide assurances that they have the proper measures in place to ensure that this information is kept safe and secure. Completion of the DSPT is therefore a contractual requirement specified in the NHS England Standard Conditions contract and it remains Department of Health and Social Care policy that all bodies that process NHS patient information for whatever purpose provide assurances via the DSPT.
Completion of the DSPT is also necessary for organisations which use national systems such as NHSmail (DCB1596) and the e-referral service.