Cardiovascular Disease Prevention Audit (CVDPREVENT Audit)

NHS England collects data from general practices in England to facilitate the CVDPREVENT Audit. The CVDPREVENT Audit is a national primary care audit commissioned and delivered by several partners including NHS England, DHSC, the Healthcare Quality Improvement Partnership (HQIP) and HQIP’s commissioned provider (hereafter referred to as ‘Audit Partners’) to support the NHS Long Term Plan, the annually negotiated General Medical Services (GMS) contract and the national CVD Prevention programme.

The NHS Long Term Plan identifies CVD as a clinical priority with the potential to prevent 150,000 strokes, heart attacks and cases of dementia over the next ten years by improving the detection and management of high blood pressure, high cholesterol and atrial fibrillation.

There are around 6 million people living with CVD and a further 16 million at risk of CVD. Heart and circulatory diseases cause a quarter (25%) of all deaths in England. This equates to almost 140,000 deaths each year. Healthcare costs relating to heart and circulatory diseases are estimated at £7.4 billion each year. The cost of CVD to the wider economy in England (including premature death, disability and informal costs) is estimated to be £15.8 billion each year.

The CVDPREVENT Audit has and will continue to help focus and optimise the CVD Prevention programme locally and nationally. The CVDPREVENT Audit has allowed for, for the first time, the provision of comprehensive locally specific and nationwide information related to CVD prevention and associated outcomes. This work has and will continue to help to highlight opportunities for broader professionally led quality improvement activity associated with the delivery of the NHS Long Term Plan.

In summary, the CVDPREVENT Audit data is needed because it supports: 

• the monitoring and evaluation of national CVD prevention programme delivery
• local quality improvement activity
• measurement of the impact on population outcomes

Sharing of CVDPREVENT Audit data and linked CVDPREVENT Audit, HES and Mortality data to the NHS England Unified Data Access Layer (UDAL)

Pseudonymised CVDPREVENT Audit data and linked CVDPREVENT Audit, HES and Mortality data has been transferred to NHS England’s UDAL. Processing in this pseudonymised environment will facilitate the tracking of the recovery of cardiovascular services post COVID-19. It will additionally provide an on-going resource to inform activities supporting NHS England’s statutory functions under the NHS Act 2006, namely but not limited to, sections:  

13D - Duty as to the effectiveness, efficiency of services.
13E - Duty as to the improvement in quality of services
13G - Duty as to reducing inequalities
13P - Duty as respects variation in provision of health services
13R - Information on safety of services provided by the health service

The pseudonymised data will be linked (through the use of a common pseudonym) with other datasets held in UDAL to support the above purposes, such as:

• Secondary Uses Service (SUS)
• Sentinel Stroke Audit (SSNAP)
• The National Institute for Cardiovascular Outcomes Research (NICOR)

Linkage of CVDPREVENT Audit data with HES and Mortality data

Linkage of CVDPREVENT Audit data with HES and Mortality data is required for the purposes of tracking, monitoring and evaluation of national programme delivery across the life course and care pathway. The enhanced data will also allow the Audit Partners to determine the impact on outcomes and health inequalities in both primary and secondary care.

Re-use of CVDPREVENT Audit data for the purposes of the National Obesity Audit (NOA)

CVDPREVENT Audit data is being re-used for the purposes of the NOA, which seeks to measure weight management service provision, interventions and outcomes to support current and future services to deliver efficient, effective and equitable prevention and care. The NOA is a patient-level data set which will cover all aspects of weight management services that are publicly funded by the NHS and DHSC in England.

NHS Benchmarking Network (aggregate data with small numbers suppressed). No personal data provided.

OHID (government unit of DHSC). Pseudonymised data provided under data sharing agreement.

• Be informed
  
• Get access to it
  
• Rectify or change it
  
• Erase or remove it
  
• Restrict or stop processing it
  
• Move, copy or transfer it
  
• Object to it being processed or used
  
• Know if a decision was made by a computer rather than a person
  

Consent is not the basis for processing, 

NHS England's lawful basis for the collection of personal data via the GP Extraction Service (GPES) is:

• UK GDPR Article 6(1)(c) - legal obligation (Cardiovascular Disease Prevention Audit Directions 2020)

NHS England's lawful basis for the collection of special categories of personal data via GPES is UK GDPR Article 9(2)(g) - reasons of substantial public interests, supplemented by:

• Schedule 1, Part 2, para 6 of the Data Protection Act 2018 - 'statutory etc and government purposes'
• UK GDPR Article 9(2)(h) - management of health or social care systems and services, supplemented by Schedule 1, Part 1, para 2 of the Data Protection Act 2018 - 'health or social care purposes'.

In relation to the sharing of data with Arden and GEM CSU, Arden and GEM CSU, as a department of NHS England, processes personal data under the same lawful bases as NHS England. See above.

NHS England's lawful basis for processing personal data held in UDAL is:

• UK GDPR Article 6(1)(c) - legal obligation (Cardiovascular Disease Prevention Audit Directions 2020 and NHS England De-Identified Data Analytics and Publication Directions 2023)
• UK GDPR Article 6(1)(e) - public task

NHS England's lawful basis for processing special categories of personal data held in UDAL is:

• UK GDPR Article 9(2)(h) - processing is necessary for the management of health or social care systems and services, supplemented by Schedule 1, Part 1, para 2 of the Data Protection Act 2018 - 'Health or social care purposes'.