Information Governance An Introduction. Information Governance Outline What is Information Governance What initiatives does IG cover.

Slides:



Advertisements
Similar presentations
Legal & Regulatory Compliance. Overview What types of information should be included? What issues or problems might there be? What benefits could be obtained?
Advertisements

NATIONAL INFORMATION GOVERNANCE BOARD
NIGB NATIONAL INFORMATION GOVERNANCE BOARD FOR HEALTH AND SOCIAL CARE.
Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.
Records Management and the NHS Code of Practice (Foundation) Information Governance Policy Team NHS Connecting for Health.
Working with Information Governance
Introduction to Information Governance (IG)
Records Management and the NHS Code of Practice (Foundation) Information Governance Policy Team NHS Connecting for Health.
Information Governance. “ensuring the confidentiality, accuracy and availability of patient information” Why Information Governance?
Principle 1 Principle 1 Processed fairly and lawfully + only with a legitimate basis There should be no surprises, so … inform data subjects why you are.
Information Governance – Who Cares? Alistair Stewart Information Governance Co-ordinator.
Confidentiality & Records Management. What is Information Governance? What is Records Management?
The Data Protection (Jersey) Law 2005.
Revised Caldicott Manual- Practice Managers Groups Revised Caldicott Manual – November 2008.
What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.
Duncan Woodhouse – Assistant Registrar for Information Security, Risk Management and Business Continuity Helen Wollerton – Administrative Officer (Legal.
DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales   
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview
Audit of Practice Around Record Keeping and Partner Notification Maeve Cross & Martin Murchie.
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
Data Protection for Church of Scotland Congregations
Practical Information Management
HSC Diploma and Apprenticeships Principles of communication in adult social care settings 301.
Implementation of Security and Confidentiality in GP Practices.
Handling information 14 Standard.
Health & Social Care Apprenticeships & Diploma
Care.Data an ICO Update EMIS National User Group Conference East Midlands Conference Centre Nottingham 3 rd October 2013 Lynne Shackley Lead Policy Officer.
Code of Conduct University of New England. Employment at the University carries with it an obligation to act in the public interest. All staff members.
The Data Protection Act 1998 The Eight Principles.
Professional Values and Basic Business Legislation.
Confidentiality and responsible information handling Legal and ethical considerations Brayne & Carr: Law for Social Workers: 10e Chapter 4.
Data Protection Act & Freedom of Information Simon Mansell Corporate Governance and Information Team.
The Data Protection Act (1998). The Data Protection Act allows you to Check if any organisation keeps information about you on computer or in paper form.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
The right item, right place, right time. DLA Privacy Act Code of Fair Information Principles.
Everyone has a duty to comply with the Act, including employers, employees, trainees, self-employed, manufacturers, suppliers, designers, importers of.
Data Protection Property Management Conference. What’s it got to do with me ? As a member of a management committee responsible for Guiding property you.
CALDICOTT PRESENTATION. History Caldicott report published in 1997 and implemented in 1999 Inquiry chaired by Dame Fiona Caldicott.
We are a group of national health and care organisations working together to provide a joined up and consistent approach to information governance. We.
Information Systems Unit 3.
Introduction to Information Governance (IG) Mark Scallan – Head of IG/Data Protection Officer Angela Kaye – IG Officer.
TRAINING COURSE. Course Objectives 1.Know how to handle a suspected case 2.Know how to care for a recognized trafficked person referred to you Session.
INFORMATION GOVERNANCE AND CONFIDENTIALITY Information Governance Facilitator.
Data Protection and research Rachael Maguire Records Manager.
Session 12 Information management and security. 1 Contents Part 1: Introduction Part 2: Legal and regulatory responsibilities Part 3: Our Procedures Part.
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
GCSE ICT Data and you: The Data Protection Act. Loyalty cards Many companies use loyalty cards to encourage consumers to use their shops and services.
© University of Reading Lee Shailer 06 June 2016 Data Protection the basics.
Introduction to the Australian Privacy Principles & the OAIC’s regulatory approach Privacy Awareness Week 2016.
Level 1 – All staff involved in routine access to information IG Presentation Ver3 Jan2015 EIG01-01N Information Governance.
Workshop Understanding your responsibilities under the Data Protection Act 1998 and the Freedom of Information Act 2000 Adele Rhodes Girling.
Data protection—training materials [Name and details of speaker]
1 Information Governance (For Dental Practices) Norman Pottinger Information Governance Manager NHS Suffolk.
Uses of brain imaging data: privacy and governance implications Dr. Hester Ward Medical Director, Information Services Division, (ISD) Consultant in Public.
Governance, risk and ethics. 2 Section A: Governance and responsibility Section B: Internal control and review Section C: Identifying and assessing risk.
Clark Holt Limited (Co. No ), Hardwick House, Prospect Place, Swindon, SN1 3LJ Authorised and regulated by the Solicitors Regulation.
Information Governance A refresher for all staff who have previously gone through the full course.
Data Protection and Confidentiality
General Data Protection Regulation
Medical Imaging Data Access and Sharing Meeting
GDPR - Individual’s Rights
Data Protection principles
Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .
Legal and Ethical Issues
Recording Clinical Data
D3 Confidentiality.
Information management and communication
General Data Protection Regulations 2018
Handling information 14 Standard.
Presentation transcript:

Information Governance An Introduction

Information Governance Outline What is Information Governance What initiatives does IG cover

Information Governance “is a framework for handling personal information in a confidential and secure manner to appropriate ethical and quality standards in a modern health service”

Information Governance contents Caldicott Confidentiality: NHS Code of Practice BS7799 / ISO Information Security Management Data Protection Act 1998 Records Management - HSC 1999/053 for the record Information Quality Assurance – Data Accreditation Freedom of Information Act 2001 Controls Assurance – IM&T and Records Management Plus other standards and initiatives yet to be defined

Information Governance Caldicott Report HSC 1999/053 Records Management EPR /Common Clinical Systems The Law: DPA 1998 Human Rights Act 1998 Freedom of Information Act 2000 Common Law ISO17799 Quality Risk Management Controls Assurance Professional regulations Ethics, Ethnicity& Beliefs Local Traditions & Practices Data Accreditation Process Data quality audit Security & confidentiality audit NHS Numbers project NSTS/Exeter Technological & Sociological Change ChoiceSeamless ServicesProtection Privacy Health Service Functions ServiceQualityResearchManagement

Information Governance Standards drawn together from the core Information Governance initiative Underpins the ICRS Modelled around Holding information securely and confidentially Obtaining information fairly and efficiently Recording information accurately and reliably Using information effectively and ethically Sharing information appropriately and lawfully

Information Governance Caldicott Confidentiality: Code of Practice Confidentiality covers ALL TYPES of information Caldicott Principles (applies to patient information) Justify the purpose(s) for using confidential information Only use it when absolutely necessary Use the minimum that is required Access should be on a strict need-to-know basis Everyone must understand their responsibilities Understand and comply with the law

Information Governance Confidentiality: Code of practice – read it –Gives guidance on when consent is required to share/disclose information –This will be covered by the Trusts policies and procedures –Do not share/disclose information without guidance from your line manager and the Information Governance Lead Employees must report any breaches in confidentiality to the Information Governance Lead

Information Governance Confidentiality –Common Law – Duty of Confidence All NHS bodies and those carrying out functions on behalf of the NHS have a common law duty of confidentiality to patients and an duty to maintain professional ethical standards of confidentiality

Information Governance Information Security –Based on ISO Code of Practice Information Security Management –Controls Assurance IM&T Employees must report any breaches in information security to the Information Governance Lead

Information Governance Employee’s Responsibilities Employee’s MUST not Divulge their password to anyone Allow other users to access a system whilst logged in under their password Share any information with any persons not authorised to see it Attempt to access any system or information they are not authorised to do so

Information Governance Data Protection –Superceeds DPA 1984 –DPA 1984 only applied to electronic records

Information Governance Data Protection Act 1998 Anyone processing personal data must comply with the eight enforceable principles of good practice. –fairly and lawfully processed; –processed for limited purposes; –adequate, relevant and not excessive; –accurate; –not kept longer than necessary; –processed in accordance with the data subject's rights; –secure; –not transferred to countries without adequate protection Enquiries about or Breaches of the Data Protection Act must be reported to the Information Governance Lead

Information Governance Data Protection Act 1998 Three main strands Notification Compliance with the Principles Rights of the data subject

Information Governance Records Management –Based on HSC 1999/053 for the record –This sets out the legal obligations of NHS bodies for keeping information in a proper manner –Gives guidelines on length of time to legally keep certain documents –Promotes good practice within the NHS –All employees have a responsibility to implement good records management

Information Governance Information Quality Assurance –Ensuring the quality of information captured and used. –Relates to the quality of the information recorded –To develop and reinforce a culture where high quality information is expected.

Information Governance Information Quality Assurance –Based on Data Accreditation guidelines mandated in Information for Health –Assuring the quality of information captured and used. –Standards for holding, obtaining, recording, using and sharing information. –Developing and reinforcing a culture where high quality information is expected and delivered.

Information Governance Freedom of Information Act 2000 –The Act gives a general right of access to all types of 'recorded' information held by public authorities, sets out exemptions from that right and places a number of obligations on public authorities.

Information Governance Information Quality Assurance –Focuses on Training Policies & Procedures Efficient and Effective Processes Communication and Feedback of Issues Accountability structures Analysis of Outputs for Completeness, Validity and Accuracy

Information Governance Freedom of Information 2000 –all public authorities have a duty to adopt and maintain a publication scheme. A publication scheme is a guide to the types of information that a public authority will routinely make available. –All enquiries regarding FoI should be forwarded to the Information Governance Lead

Information Governance Conclusion Read the Trusts policies and procedures to ensure you are aware of your responsibilities in keeping information confidential and secure Do not disclose information unless you have been given permission Ask if you are not sure Inform the Information Governance Lead of any breaches in confidentiality or information security

Information Governance Useful Web sites –Information Governance –Confidentiality: Code of Practice –Data protection –For the Record 88a9/ecd5f68ba22dd17b ef68/$FILE/Hsc053.pdfhttp:// 88a9/ecd5f68ba22dd17b ef68/$FILE/Hsc053.pdf –The Trusts Policies and Procedures www…..

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.