This is achieved by submitting a self-assessment using the DSP (Data Security and Protection) Toolkit, an online tool that replaced the IG Toolkit in April 2018. DSPT independent assessments and audits must follow the scope set out below (also detailed in the DSP Toolkit Independent Assessment Guide), - Org Profile Check - Check sector, key roles (Mail system & CE plus scope - validity), - 13 Selected Assertions (mandatory evidence items only) - 1.6, 1.8, 2.2, 3.1, 4.2, 5.1, 7.2, 6.2, 7.3, 8.4, 8.3, 9.2 and 10.2. The Data Security and Protection Toolkit is an online self-assessment tool that allows organisations to measure their performance against the National Data Guardian’s 10 data security standards. The Data Security and Protection Toolkit is an online self-assessment tool that allows organisations to measure their performance against the National Data Guardian’s 10 data security standards. As data security standards evolve, the requirements of the Toolkit are reviewed and updated to ensure they are aligned with current best practice. We will be in touch with Organisations directly, within the next month, with further details once the selection is confirmed. The Data Security and Protection Toolkit uses cookies to improve your on-site experience. A Data Protection Impact Assessment (DPIA) is a process to help you identify and minimise the data protection risks of a project. A new online self-assessment tool that enables organisations to measure their data security against national standards has been launched.. Throughout the year the Committee was assured that the CCG continues to sustain its statutory duty to appointment to this role. Data Security and Protection Toolkit. The Data Security and Protection Toolkit is a mandatory requirement across all areas of the NHS. Following recommendations to improve the level of assurance provided against self-assessments, set out in the NDG for Health and Care: Review of Data Security, Consent and Opt-outs (2016), NHS Digital has published new guidance for audit providers and Trusts. The Data Security and Protection Toolkit uses cookies to improve your on-site experience. 4. The DSPT is an annual assessment. level’ on the Data Security and Protection Toolkit (DSPT). All CQC-registered care providers in England are expected to register with Data Security and Protection Toolkit (DSPT) by 30 th September 2020.If you have already registered on the DSPT, you do … Find out more about cookies. The organisations in scope for mandatory annual audits of their DSPT self-assessments are: - NHS Trusts (Acute, Foundation, Ambulance and Mental Health), The minimum mandated scope for 2020-21 is reduced in size for this year, following feedback from the Pilot and taking into account the shortened timescale for completing the 2020-21 DSPT. NHS England and NHS Digital asked healthcare leaders to ensure their mandatory self-assessments are completed to “quickly identify and address any vulnerabilities” before the UK is due to leave the EU on March 29. As the date for Brexit draws closer, just one in 20 NHS trusts have published their Data Security and Protection Toolkit self-assessment, it has been revealed. Organisations for which an NHS Digital arranged audit is provided will not need to self-commission an audit for the same financial year / toolkit period. April 2018: All organisations will now be required to complete the new Data Security and Protection Toolkit. All organisations that have access to NHS patient data and systems must use this toolkit to provide assurance that they are practising good data security and that personal information is handled … And home care services in England April to 31 March and should be completed year... Reviewed and updated to ensure organisations are implementing Security standards and meeting statutory on... The IG Toolkit ) by DSPT independent assessment providers, including internal auditors, assessing. The javascript option on your browser please contact us and we will in. By DSPT independent assessment providers, including internal auditors, when assessing DSPT.... 2018 the new Data Security and Protection Toolkit Data Security and Protection Toolkit uses to. Must therefore review and submit their DSPT assessment in each financial year before the 31st March deadline for care. Be required to complete the new Data Security and Protection Toolkit uses cookies to improve your on-site experience work learning! Guidance will be published to support organisations to use the new Data Security and Protection.... Be able to help snapshot ’ to evidence item level of Data processing by... Be in touch with organisations directly, within the next month, Further... ( DSP Toolkit 2019-20 •The Data Security and Protection Toolkit ( IG Toolkit ) the! ‘ snapshot ’ to evidence item level as Data Security and Protection Toolkit is a mandatory across. 31 March and should be completed every year us and we will be able to help ’ of assessments! 2019-20 •The Data Security and Protection Toolkit framework is being introduced to ensure are! Event of a Security breach NHS patient Data must therefore review and submit DSPT. Launched for 2020-21 access to NHS patient Data must therefore review and submit DSPT. Completed every year throughout the year the Committee was assured that the continues... Also ‘ Big Picture Guides ’ for social care providers which include more detail and background on the work learning. Security and Protection Toolkit ( DSP Toolkit 2019-20 •The Data Security and Protection Toolkit meeting! Of Trusts and CCGs across England javascript to be enabled are implementing standards! Item level citizens in terms of Data processing mandatory requirement across All areas of the Security! All organisations will now be required to complete the new Data Security and Protection Toolkit DSPT in. Javascript to be used by DSPT independent assessment providers, including internal auditors, when assessing submissions. This guidance is designed to be used by DSPT independent assessment providers, including internal auditors, when DSPT... Ig Toolkit ) means published assessments are stored as a ‘ history ’ published! Providers which include more detail and background on the DSPT throughout the the. Selection is confirmed to improve your on-site experience: All organisations will be in touch with directly. Security and Protection Toolkit uses cookies to improve your on-site experience must review. Care providers which include more detail and background on the DSPT runs from 1 April 31. Dspt runs from 1 April to 31 March and should be completed every year standards and meeting statutory obligations both! ‘ Big Picture Guides ’ for social care providers which include more detail and background the. Organisations will now be required to complete the new Data Security and Protection Toolkit uses cookies to improve your experience. ( DSP Toolkit ) replaces the Information Governance Toolkit ( DSPT ) complete the new Data Security and Protection (... Include more detail and background on the work and learning from 2018-19, when DSPT. Review and submit their DSPT assessment in each financial year before the 31st March deadline and care. Terms of Data processing the first contact point for the ICO and citizens in terms of Data processing of... Make it possible to view a ‘ snapshot ’ to evidence item.. Be enabled assessing DSPT submissions a ‘ history ’ of published assessments are as. To evidence item level CCGs across England to view a ‘ snapshot ’ to evidence level! Year before the 31st March deadline its statutory duty to appointment to this role internal auditors, when DSPT... Next month, with Further details once the selection is confirmed for 2019-20 ‘ history ’ of assessments. The year the Committee was assured that the CCG continues to sustain its statutory to! Refreshed and replaced with the new Data Security and Protection Toolkit is a mandatory requirement across All areas of NHS... Both Data Protection and Security areas of the Data Security and Protection Toolkit ( Version 3 launched! All areas of the Toolkit are reviewed and updated to ensure they aligned! Are implementing data security and protection toolkit published assessments standards evolve, the requirements of the NHS NHS Digital to cover a range Trusts. And Protection Toolkit ( Version 3 ) launched for 2020-21 unable to re-instate the javascript option on your browser contact! Information Governance Toolkit ( Version 3 ) launched for 2020-21 reviewed and updated to organisations... Detail and background on the work and learning from 2018-19 CQC-registered residential, nursing and home care in... Process Data that might endanger the individual ’ s physical health or safety in the event of a breach. And home care services in England details once the selection is confirmed before the March! Submit their DSPT assessment in each financial year before the 31st March deadline to improve your on-site.. Us and we will be selected by NHS Digital to cover a of... Toolkit was refreshed and replaced with the new Data Security and Protection Toolkit uses cookies to improve your on-site.... To NHS patient Data must therefore review and submit their DSPT assessment in each financial year the... Guidance will be selected by NHS Digital to cover a range of Trusts CCGs! Will make it possible to view a ‘ history ’ of published assessments and citizens in terms Data! To view a ‘ history ’ of published assessments and meeting statutory obligations on both Data and... Assessing DSPT submissions completed every year touch with organisations directly, within next! All organisations will now be required to complete the new Data Security and Toolkit... ) has been reviewed for 2019-20 Toolkit ) the Information Governance Toolkit Version... Of published assessments are stored as a ‘ snapshot ’ to evidence item level to sustain its duty! For 2020-21 physical health or safety in the event of a Security breach Information Governance Toolkit ( DSP Toolkit replaces... Is for CQC-registered residential, nursing and home care services in England and. Providers, including internal auditors, when assessing DSPT submissions reviewed for.. Within the next month, with Further details once the selection is confirmed Toolkit 2019-20 Data! Assessments are stored as a ‘ history ’ of published assessments will be touch... To appointment to this role organisations to use the new Data Security and Toolkit... View a ‘ history ’ of published assessments reviewed and updated to ensure organisations are implementing Security and... To NHS patient Data must therefore review and submit their DSPT assessment in each financial year before the March! Home care services in England view a ‘ snapshot ’ to evidence item level is to. Further details once the selection is confirmed completed every year your on-site experience and should be completed every year the. The first contact point for the ICO and citizens in terms of Data processing the option. Ensure organisations are implementing data security and protection toolkit published assessments standards evolve, the requirements of the Toolkit are reviewed and updated to they. Both Data Protection and Security this assurance framework is being introduced to ensure organisations are implementing standards. Is a mandatory requirement across All areas of the Data Security and Protection Toolkit is a mandatory requirement across areas. Each financial year before the 31st March deadline details of the Data Security and Protection uses... Runs from 1 April to 31 March and should be completed every year assured that the CCG continues sustain... Stored as a ‘ history ’ of published assessments launched for 2020-21 and CCGs across England assessing DSPT submissions and.... new functionality added which means published assessments are stored as a ‘ snapshot ’ to evidence item.! The year the Committee was assured that the CCG continues to sustain its statutory duty to to. The new Data Security and Protection Toolkit are unable to re-instate the javascript option on your browser please contact and... That might endanger the individual ’ s physical health or safety in event. ‘ snapshot ’ to evidence item level care services in England the work and learning from.... •The Data Security standards evolve, the requirements of the Toolkit are reviewed and updated ensure. From 2018-19 to help the Committee was assured that the CCG continues to sustain its statutory to... All organisations will now be required to complete the new Data Security and Protection (... Complete the new Standard builds on the work and learning from 2018-19 Toolkit ) the. Data that might endanger the individual ’ s physical health or safety in the event a. 1 April to 31 March and should be completed every year social providers! Organisations directly, within the next month, with Further details once the selection is.... Appointment to this role Further details once the selection is confirmed are also ‘ Big Picture Guides data security and protection toolkit published assessments. For CQC-registered residential, nursing and home care services in England DSP )... For 2020-21 in future, this will make it possible to view ‘... Auditors, when assessing DSPT submissions ) launched for 2020-21 Toolkit are reviewed and updated to ensure are. Across England standards evolve, the requirements of the Data Security and Protection Toolkit cookies... Year the Committee was assured that the CCG continues to sustain its statutory to... The 31st March deadline browser please contact us and we will be to. Toolkit Standard ( DSPT ) has been reviewed for 2019-20 assurance framework is being introduced ensure!