Project background

It is important that Social Care Services can show that they share information safely and appropriately to regulators and to those you care for (and their families). Completing the DSPT and then using NHSmail to share patient data securely is one of the ways care homes can demonstrate satisfaction of this requirement.

The objective of this project is to support Nottinghamshire Social Care Services in achieving the Data Security and Protection Toolkit (DSPT) entry level requirements. This is so they can satisfy the CQC and their NHS clients that they are compliant with data security standards. The DSPT is an online self assessment tool that provides assurance that organisations are practising good data security and that Social Care Services are correctly managing personal data.

This work is to help to deliver the CCG’s commitment to ‘harness data and technology’. This requires Social Care Services to have access to linked health and social care data sets, access to the care record, secure email and to generally make better use of technology.

Although Social Care Services can, and should, apply for NHSMail through the temporary streamlined process put in place as part of the Covid-19 emergency response, they will still be required to demonstrate data protection compliance in order to retain use of NHSMail in the longer term.

Social Care Services only need to satisfy the most basic level of requirements – called Entry Level.

This project provides:

  • A programme of webinars and support documents (templates to adapt)
  • An information governance helpdesk to raise issues specific to your care setting
  • An FAQ document answering the questions raised by other Social Care Service providers
  • A website which is the home for all the resources available.

This project has wider importance for Social Care Services. In 2017, the CQC added a new Key Line of Enquiry:

“How does the service assure itself that it has robust arrangements (including appropriate internal and external validation) to ensure the security, availability, sharing and integrity of confidential data, and records and data management systems, in line with data security standards? Are lessons learned when there are data security breaches?”

In November 2018, CQC announced the launch of their new resource exploring the use of technology in care: click here to read.