Skip to main content

Part of A guide to confidentiality in health and social care: references

Section 17: Information security management

Previous Chapter

Section 16

Current Chapter

Current chapter – Section 17: Information security management

View all

Next Chapter

Section 18

Information security is essential for all types of confidential records, whether manual or electronic. Organisations must ensure staff take basic precautions against information security breaches, such as not leaving portable computers, medical notes or files in unattended cars or in easily accessible areas. All files and portable equipment should be stored under lock and key when not actually being used. Staff should not normally take patient/service user records home, and where this cannot be avoided, procedures for safeguarding the information effectively should be locally agreed.

Guidance on information security is provided in the DH publication Information Security: NHS Code of Practice

Detailed information security assurance requirements are set out in the Information Governance Toolkit

Last edited: 17 January 2022 1:48 pm

Previous Chapter

Section 16

Next Chapter

Section 18

Chapters

  1. A guide to confidentiality in health and social care: references
  2. Section 1: The information governance review
  3. Section 2: The common law of confidentiality and consent
  4. Section 3: The Data Protection Act 1998
  5. Section 4: Human Rights Act provisions
  6. Section 5: Professional regulators’ guidance
  7. Section 6: Record-keeping best practice
  8. Section 7: Sharing information for direct care
  9. Section 8: Carers, family members and friends
  10. Section 9: Safeguarding
  11. Section 10: Using health and social care information –direct care and indirect care purposes
  12. Section 11: Privacy Impact Assessments
  13. Section 12: Anonymisation guidance
  14. Section 13: Accredited Safe Havens
  15. Section 14: Data sharing contracts and agreements
  16. Section 15: The Health and Social Care Information Centre’s powers under the Health and Social Care Act 2012
  17. Section 16: Legislation that controls confidential information disclosures
  18. Section 17: Information security management
  19. Section 18: Objections to sharing
  20. List of key documents
  21. Glossary