Information Assets: Security and Risk Management Policy. Choice, Responsiveness, Integration & Shared Care
|
|
- Britney Wilkinson
- 6 years ago
- Views:
Transcription
1 s: Security and Risk Management Policy Choice, Responsiveness, Integration & Shared Care
2 Worcestershire Mental Health Partnership NHS Trust Reader Box Document Type: Document Purpose: Unique identifier: Title: Target Audience: Description: Superseded Documents: Ratified by: Corporate Policy Best Practice Guidance TC0120 s: Security and Risk Management Policy All Staff risk management is a register and an assessment of the Trust s information systems. systems are known as s (IA) because they are valuable to the clinical and business functions of the organisation. None Quality Committee Ratification date: 7 th February 2011 Implementation date: February 2011 Review period: 1 year1 Version update date: Review date: February 2012 Owner: Responsible group: Contact Details: Director of Resources Governance Director of Resources Isaac Maddox House Shrub Hill Road Worcester WR4 9RW The electronic copy of this document is the only version that is maintained. Printed copies may not be relied upon to contain the latest updates and amendments.
3 Worcestershire Mental Health Partnership NHS Trust Diagram 1 Risk Management Structure Trust Board Quality Committee Senior Risk Owner through Governance Strategy Group Upholding the Data Protection Act and the NHS Code of Confidentiality through information risk management. 1.0 Introduction 1.1 This policy sets out Worcestershire Mental Health Partnership NHS Trust s (WMHPT) Risk Management Policy. risk management is a register and an assessment of the Trust s information systems. systems are known as s (IA) because they are valuable to the clinical and business functions of the organisation. Page 1 of 7
4 1.2 Objectives The objectives of this policy are to: Protect patients and staff from information. Protect the Trust s corporate records. Protect the systems and environments where information is stored. Protect the processes by which information is accessed. Provide a consistent risk management framework. Encourage pro-active rather than re-active information risk management. In compliance of legislative and Governance Assurance Framework. 1.3 What are s (IA)? There are various categories of s including: Databases. Current and archived. Paper records. Current and archived. Software. Applications, programs, systems development tools and utilities. Physical. Infrastructure, equipment, furniture and accommodation used for data processing. Services. Computing and communications, heating, lighting, power, air-conditioning used for data processing. People. Qualifications, skills and experience. Policies. Procedures, guidance and training Intangibles. Public confidence in the organisation s compliance to the Data Protection Act and NHS Code of Confidentiality 1.4 What is the Register? An Register is a single document listing all the Trust s valuable information systems and which records all assessed risks. Appendix 2 illustrates the format of the information asset register. Page 2 of 7
5 The SIRO will oversee the Trust s information asset register to ensure it is complete and robust. 2.0 Roles and Responsibilities 2.1 The Role of the Senior Risk Owner The Senior Risk Owner (SIRO) is responsible for coordinating the information standards within the Trust through the membership and activities of the Governance Group. 2.2 (IAO) It is important that ownership of each is linked to a post rather than a named individual. This ensures responsibility for each asset is passed on when IAOs leave or changes roles. (IAOs) shall ensure information risk assessments are performed at least annually. It is important that each IAO should know: What information is held and the nature of and justification for information flows to and from each asset. Who has access and the purpose of access? As a result they should be able to understand and address any risks and to ensure assets comply with the Data Protection Act. IAOs will provide reports to the SIRO, at least annually on assurance and usage of their asset. Page 3 of 7
6 2.3 Administrators Large information systems may nominate key functions to Administrators (IAAs) to assist the IAO in the operational management of an asset. 2.4 All staff All staff have a contractual obligation to ensure confidential and Person Identifiable Data is secure all at times. The framework for this obligation is defined in: The Code of Conduct for Employees in Respect of Confidentiality The NHS Code of Practice on Confidentiality 2003 The Data Protection Act 1998 The Caldicott Guardian principles. Trust Governance Policies. 3.0 Training Training and awareness is the primary influence in ensuring information is appropriately managed and information breaches do not happen. Training should be a tiered approach, appropriate to the organisational needs and individual s roles and responsibilities. Appendix one illustrates the Trust s Governance training needs assessment and states the minimum requirement. 4.0 Incident Reporting All incidents of confidential and or Person Identifiable Data breaches must be recorded on the Trust s reporting system as per the Trust s Risk Management Policy. Security Breach Impact on Reputation Security Breach Impact on Individual Page 4 of 7
7 5.0 Monitoring This policy will be monitored against the Governance Toolkit requirements and: Receiving reports form IAO Reviewing Governance related incident reports Reviewing the Register By the information Governance Strategy Group 6.0 Further Guidance Further guidance on the arrangements for Risk Management can be accessed via Connecting for Health s Governance web page: 35&lnv=4&cb=14%3a42%3a39&sViewOrgType=5&sDesc=Mental%20Health%20Trust Page 5 of 7
8 Appendix 1 Risk Management Training Needs Assessment Description Process Monitoring Tier 1 All staff must receive basic Governance training at induction. and Work place induction Mandatory attendance at Trust Induction Work place induction Monitored by Practice Development Service Improvement Tier 2* In line with the NHS Operating Framework 2010/2011, 95% of the Trust s workforce (including all permanent staff and staff on temporary contracts of more than 3 months) must completed the Introduction to Governance and The Beginners Guide to Governance training utilising the NHS Governance Training Tool (NHS IGTT) by 31 st March This is a mandatory requirement has been imbedded in the Trust s training matrix. These modules are accessible via the e learning application in ESR. This applies to employed staff, contracted staff, volunteers, temporary staff, students etc. Completion of: Introduction to Governance & The Beginners Guide to Governance Via e learning modules in ESR Monitored by Practice Development Service Improvement Tier 3* Recommended modules defined by role in Connecting for Health IG Training Tool. Senior Risk Owner (SIRO) Caldicott Guardian Governance Manager Administrators Records Manager MHA Administrator Head of & contracting Manager Directors Non exec directors Admin staff with access to PID/Confidential information Admin non access to PID/Confidential information Clinical staff Students Volunteers These modules are currently only accessible via logging directly onto Connecting for Health Governance Training Tool and registering as a user. Connecting for Health IGTT generated report. *Guidance on accessing tier 2 and 3 training is available on the Trust s Governance Appendix 2 Format of of Register Risk Assessment Informat ion Systems System Managem ent (Local / National or Independ ent) WMHPT s Informati on owner Trust Departme ntal Managem ent Administra tors (IAA) where appropriate Acces s contr ols (Ref IGT 305) Key Dependen cies Maintenan ce History or (who has contractu al responsibi lity to maintain system) Typ e of dat a Is data process ed outside of the UK? Ref IGT 209 (Yes / No) Descripti on of Risk Conseque nce 0-5 Likeliho od 0 5 Risk Rati ng Page 6 of 7
9 EQUALITY IMPACT ASSESSMENT FORM (EIAF) SECTION ONE: SCREENING / PRIORITISING FOR FULL IMPACT ASSESSMENT Name of the Function/Policy/Procedure: Risk Management Policy If any of these are relevant box below (for the equality area) and continue with screening. If it does not apply add x and cease the process. Which of the 3 parts does it apply to (if any) 1. Eliminating discrimination 2. promoting equal opportunities 3. Promoting good community relations 1 Is there evidence or reason to believe that some groups could be differently affected? Which groups are affected? 2 How much evidence do you have? 0 2 None or little 3 4 Some 5 6 Substantial 3 Is there any public concern that the function or policy is being carried out in a discriminatory way? 0 2 None or little 3 4 Some 5 6 Substantial 4 Priority (add columns 3 & 4) RACE 1,2 & 3 No RELIGION/BELIEF No ,2 & 3 DISABILITY No ,2 & 3 GENDER 1,2 & 3 No AGE 1,2 & 3 No SEXUAL ORIENTATION 1,2 & 3 No HEALTH INEQUALITIES 1,2 & 3 No HUMAN RIGHTS 1,2 & 3 No Section 2: ACTION PLAN None required Page 7 of 7
INFORMATION GOVERNANCE STRATEGY
INFORMATION GOVERNANCE STRATEGY Document Number 2009/49/V2 Document Title Information Governance Strategy Author Phil Cottis Author s Job Title Information Governance & RA Manager Department IM&T Ratifying
More informationIGPr002 - Information Governance Management Framework
IGPr002 - Information Governance Management Framework Page 1 of 10 Table of Contents Information Governance Management Framework... 1 Why we need this Framework... 3 What the Framework is trying to do...
More informationInformation Governance Assurance Framework
Document Reference POL008 Document Status Approved Version: V4.0 DOCUMENT CHANGE HISTORY Initiated by Date Author IG Toolkit Requirements November 2010 IG Manager Version Date Comments (i.e. viewed, or
More informationINFORMATION GOVERNANCE MANAGEMENT FRAMEWORK
INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK Document History Document Reference: IG33 Document Purpose: The document complements all other Information Governance policies and sets out the management arrangements
More informationIG01 Information Governance Management Framework
IG01 Information Governance Management Framework 1 INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK Document History Document Reference: IG01 Document Purpose: The document compliments all other Information
More informationInformation Governance Policy
Information Governance Policy Version: 4.0 Ratified by: NHS Bury Clinical Commissioning Group Information Governance Operational Group Date ratified: 19 th September 2017 Name of originator /author (s):
More informationInformation Governance Management Framework
Information Governance Management Framework November 2014 Author: Responsibility: Lynda Harris, Head of Information Governance All Staff Effective Date: November 2014 Review Date: November 2015 Reviewing/Endorsing
More informationINFORMATION GOVERNANCE POLICY
INFORMATION GOVERNANCE POLICY Unique Reference / Version Primary Intranet Location Information Management & Governance Secondary Intranet Location Policy Name Information Governance Policy Version Number
More informationInformation Governance Management Framework Version 6 December 2017
Information Governance Management Framework Version 6 December 2017 Page 1 of 8 Introduction Robust information governance requires clear and effective management and accountability structures, governance
More informationInformation Governance Policy and Management Framework
Putting Barnsley People First Information Governance Policy and Management Framework Version: 2.0 Approved By: Governing Body Date Approved: February 2014 Name of originator / author: Richard Walker Name
More informationINFORMATION GOVERNANCE STRATEGY IMPLEMENTATION PLAN
INFORMATION GOVERNANCE STRATEGY & IMPLEMENTATION PLAN 2015-2018 Disclaimer The latest version of this document is located on PTHB intranet. Please check the review date and if there are any doubts contact
More informationInformation Governance Management Framework
Management Framework Summary: This document sets out the framework, structure, system and accountabilities for Management within West Kent CCG Clinical Commissioning Group. APPROVED BY: Chief Finance Officer
More informationData Quality Policy
Cambridgeshire and Peterborough Clinical Commissioning Group (CCG) Data Quality Policy 2017-2019 Ratification Process Lead Author(s): Reviewed / Developed by: Approved by: Ratified by: Associate Director
More informationHeart of England NHS Foundation Trust
Heart of England NHS Foundation Trust Data protection audit report Executive summary February 2017 1. Background 1. Background The Information Commissioner is responsible for enforcing and promoting compliance
More informationInformation Governance Strategy and Management Framework
Information Governance Strategy and Management Framework Summary: This strategy sets out the framework, structure, system and accountabilities for Information Governance Management within NHS Eastbourne,
More informationDATA QUALITY POLICY. Ref No:
Ref No: DATA QUALITY POLICY Version: 4e Ratified by: Policy Ratification Group Date ratified: 15 December 2010 Name of author: Head of Information & Performance Name of responsible committee: Quality Committee
More informationInformation Governance Strategic Management Framework
Information Governance Strategic Management Framework 2016-2018 Susan Meakin Information Governance Manager June 2016 Information Governance DOCUMENT CONTROL: Version: 2 Ratified by: Health Informatics
More informationTechnology & Telecommunications. Electronic Data Backup Policy
Technology & Telecommunications Document Status Approved Version: V 4.0 DOCUMENT CHANGE HISTOR Initiated by Date Author Head of IS&T 14 March 2012 IS&T Security & Resilience Manager Version Date Comments
More informationINFORMATION GOVERNANCE MANAGEMENT FRAMEWORK
NHS South West Lincolnshire Clinical Commissioning Group (CCG) INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK Document History: Document Reference: Document Purpose: IG01 Date Ratified: January 2015 Ratified
More informationNHS SOUTH DEVON AND TORBAY CLINICAL COMMISSIONING GROUP INFORMATION LIFECYCLE MANAGEMENT POLICY
NHS SOUTH DEVON AND TORBAY CLINICAL COMMISSIONING GROUP INFORMATION LIFECYCLE MANAGEMENT POLICY Version Control Version: 2.0 dated 17 July 2015 DATE VERSION CONTROL 04/06/2013 1.0 First draft of new policy
More informationData Protection Policy
Data Protection Policy StCH Data Protection Policy - POL 53 vs1 - July 2016 1 Document Control Table Document Title: Data Protection Policy Document Ref: POL 53 Author (name and job title): Karen Anderson,
More informationInformation Governance Policy
Information Governance Policy Applicable to All employees Version1.0 Last Updated March 2014 CONFIDENTIAL Page 2 of 6 Contents 1. Objectives 3 2. Scope 3 3. Principles 3 4. Information Governance Policy
More informationLisa Quinn Executive Director of Performance and Assurance. Lead Officer
Document Title Reference Number Lead Officer Author(s) (name and designation) Ratified by Data Quality Policy NTW(O)26 Lisa Quinn Executive Director of Performance and Assurance Jennifer Illingworth Deputy
More informationINFORMATION GOVERNANCE STRATEGY. Documentation control
INFORMATION GOVERNANCE STRATEGY Documentation control Reference Date Approved Approving Body Version Supersedes Consultation Undertaken Target Audience Supporting procedures GG/INF/01 TRUST BOARD Information
More informationMinor adjustments from IG Steering Group 0.3 Neil Taylor September 2013
Author(s) Andrew Thomas Version 0.3 Version Date 21 August 2013 Implementation/approval Date Review Date August 2014 Review Body Governing Body Policy Reference Number 014 Version Author Date Reason for
More informationFreedom of Information (FOI) Policy
Freedom of Information (FOI) Policy Subject Freedom of Information Act (2000) Policy number Tbc Approved by Trust Executive Group Date approved March 2015 Version 2 Policy owner Director of Communications
More informationHonorary Contracts Procedure
Honorary Contracts Procedure Version: 3.0 Bodies consulted: Approved by: Joint Staff Consultative Committee & WMT Executive Management Team Date Approved: 03 October 2017 Lead Manager: Responsible Director:
More informationINFORMATION GOVERNANCE POLICY
INFORMATION GOVERNANCE POLICY Page 1 of 13 INFORMATION GOVERNANCE POLICY EXECUTIVE SUMMARY Key Messages Principles of Information Governance Openness Confidentiality and Legal Compliance Information Security
More informationInformation Governance Training Plan
Information Governance Training Plan Page 1 of 10 Paper O2 - CCG_IG_Training_Plan_2017-18_V3.0 Final Paper O2 - CCG_IG_Training_Plan_2017-18_V3.0 Final Information Governance Training Plan Derbyshire Clinical
More informationDATA QUALITY POLICY. Version: 1.2. Management and Caldicott Committee. Date approved: 02 February Governance Lead
DATA QUALITY POLICY Version: 1.2 Approved by: Date approved: 02 February 2016 Name of Originator/Author: Name of Responsible Committee/Individual: Information Governance, Records Management and Caldicott
More informationThe Royal Wolverhampton NHS Trust
The Royal Wolverhampton NHS Trust Trust Board Report Meeting Date: Monday 30 March, 2015 Title: Information Governance Toolkit Submission V12 2014/15 Executive Summary: Action Requested: Report of: Author:
More informationDate ratified June, Implementation Date August, Date of full Implementation August, Review Date Feb, Version number V02.
Document Title Reference Number Lead Officer Author(s) Ratified by Disputes Policy NTW(HR)07 Lisa Crichton-Jones Acting Executive Director of Workforce and Organisational Development Jacqueline Tate-Workforce
More informationRole Title: Chief Officer Responsible to: CCG chairs - one employing CCG Job purpose/ Main Responsibilities
Role Title: Chief Officer Responsible to: CCG chairs - one employing CCG Job purpose/ Main Responsibilities Accountable to: All employed staff working within the 3 CCGs Within the 3 CCGs the Chief Officer
More informationEQUALITY AND DIVERSITY COMMITTEE. Terms of Reference
1. INTRODUCTION AND PURPOSE EQUALITY AND DIVERSITY COMMITTEE Terms of Reference 1.1. The role and purpose of the Equality and Diversity Committee is to enable the Trust Board and Executive Committee to
More informationINFORMATION GOVERNANCE MANAGEMENT FRAMEWORK POLICY
INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK POLICY Version: 1.4 Approved by: Date approved: 19 January 2017 Name of Originator/Author: Name of Responsible Committee/Individual: Date issued: Information
More informationRecords management policy. Document author Assured by Review cycle. Audit and Risk Committee. 1. Introduction Purpose or aim Scope...
Records management policy Board library reference Document author Assured by Review cycle P017 Head of Compliance Audit and Risk Committee 3 Years This document is version controlled. The master copy is
More informationInduction Policy. Document author Assured by Review cycle. 1. Introduction Policy Statement Purpose or Aim Scope...
Induction Policy Board library reference Document author Assured by Review cycle P091 Head of Learning and Development Quality and Standards Committee 3 Year This document is version controlled. The master
More informationHUMAN RESOURCES POLICY
North of England Clinical Commissioning Groups HUMAN RESOURCES POLICY REDEPLOYMENT Policy Number: HR28 Version Number: 2.0 Issued Date: May 2015 Review Date: May 2017 Sponsoring Director: Prepared By:
More informationAnnual leave and bank holiday policy
Document level: Trustwide (TW) Code: HR2.6 Issue number: 3 Annual leave and bank holiday policy Lead executive Director of Nursing Therapies Patient Partnership Author and contact number Head of Human
More informationNHS BARNSLEY CCG DATA QUALITY POLICY SEPTEMBER 2016
Putting Barnsley People First NHS BARNSLEY CCG DATA QUALITY POLICY SEPTEMBER 2016 Version: 1.0 Approved By: Governing Body Date Approved: 8 September 2016 Name of originator / author: Name of responsible
More informationMedical & Dental Staff ON-CALL POLICY FOR DOCTORS IN TRAINING (MD5)
Medical & Dental Staff ON-CALL POLICY FOR DOCTORS IN TRAINING (MD5) If you require a copy of this policy in an alternative format (for example large print, easy read) or would like any assistance in relation
More informationFixed Term Staffing Policy
Fixed Term Staffing Policy Who Should Read This Policy Target Audience All Trust Staff Version 1.0 October 2015 Ref. Contents Page 1.0 Introduction 4 2.0 Purpose 4 3.0 Objectives 4 4.0 Process 4 4.1 Recruitment
More information1.1 Contributes to the Trust s Organisational Development strategy to improve overall organisational performance and effectiveness
JOB TITLE: OD Practitioner BAND: AFC 7 BASE: RESPONSIBLE TO: ACCOUNTABLE TO: XX OD Consultant (OD Lead) Director of OD and L&D JOB SUMMARY The Organisational Development Practitioner is responsible for
More informationDirectorate of Finance, Information & Performance Management DATA QUALITY POLICY
Directorate of Finance, Information & Performance Management DATA QUALITY POLICY Reference: FPP003 Version: 1.5 This version issued: 10/03/11 Result of last review: Minor changes Date approved: 21/01/11
More informationData protection (GDPR) policy
Data protection (GDPR) policy January 2018 Version: 1.0 NHS fraud. Spot it. Report it. Together we stop it. Version control Version Name Date Comment 1.0 Trevor Duplessis 22/01/18 Review due Dec 2018 OFFICIAL
More informationCode of Corporate Governance
Code of Corporate Governance 1 FOREWORD From the Chairman of the General Purposes Committee I am pleased to endorse this Code of Corporate Governance, which sets out the commitment of Cambridgeshire County
More informationDaytime and On-Call Cover Remuneration Policy for Non Training Grade Medical Staff
Daytime and On-Call Cover Remuneration Policy for Non Training Grade Medical Staff Who Should Read This Policy Target Audience Consultants Staff Grades and Associate Specialists (SAS Doctors) Line Managers
More informationDepartment HR Operations. Approved by Pay and Reward Sub Group. Approval and Review Process Workforce & Organisational Development Committee
Document Control Title Job Evaluation Policy Author s job title HR Manager Directorate Workforce Development Date Version Issued 0.1 May 2013 Status Draft Department HR Operations 0.2 Sept 2013 Final 0.3
More informationAdditional Annual Leave Purchase Scheme V3.0
Additional Annual Leave Purchase Scheme V3.0 Table of Contents 1. Introduction... 3 2. Purpose of this Policy/Procedure... 3 3. Scope... 3 4. Definitions / Glossary... 3 5. Ownership and Responsibilities...
More informationInformation Governance Management Framework 2017/18 Reference: IG12
Information Governance Management Framework 2017/18 Reference: IG12 Compliance with all CCG policies, procedures, protocols, guidelines, guidance and standards is a condition of employment. Breach of policy
More informationRisk Management Strategy
High Value Health Care Risk Management Strategy (Reference No. GR21 0914) Version: Version 4, September 2014 Version Superseded: Version 3, March 2012 Ratified by: Date ratified: 11 th November 2014 Designation
More informationRISK MANAGEMENT COMMITTEE TERMS OF REFERENCE
RISK MANAGEMENT COMMITTEE TERMS OF REFERENCE Terms of Reference Agreed by the Committee Signed by the Chair on Behalf of the Committee Print Signature Date 16 th December 2011 Review Date December 2012
More informationType of Change. V01 New Mar 16 New Documentation. This Policy supersedes the following Policy which must now be destroyed:
Document Title Reference Number Lead Officer Author(s) (name and designation) Ratified by Study Leave Policy for Medical Staff (Consultants and Specialty Doctors) NTW(HR)22 Rajesh Nadkarni Executive Medical
More informationDATA QUALITY POLICY Review Date: CONTENT
Title: Date Approved: Approved by: DATA QUALITY POLICY Review Date: Policy Ref: Issue: Jan 2010 Sherwood Forest Hospitals Oct 2011 Information Governance Group Division/Department: Policy Category: ISP_03
More informationJOB DESCRIPTION. E-Commerce and Merchandise Manager
JOB DESCRIPTION POST: E-Commerce Team Leader GRADE: Band 3 ACCOUNTABLE TO: RESPONSIBLE TO: BASE: DBS CHECK: Director of Retail & New Business E-Commerce and Merchandise Manager Aylesbury Broadfields Site
More informationInformation Governance Management Framework
Information Governance Management Framework Document Status: Approved Version: v 1.6 DOCUMENT CHANGE HISTORY Version Date Comments (i.e. viewed, or reviewed, amended, approved by person or committee v1.0
More informationInduction policy and procedure HR08
Induction policy and procedure HR08 Beware when using a printed version of this document. It may have been subsequently amended. Please check online for the latest version. Applies to: All staff, including
More informationWORCESTERSHIRE MENTAL HEALTH PARTNERSHIP NHS TRUST JOB EVALUATION AND REBAND POLICY
WORCESTERSHIRE MENTAL HEALTH PARTNERSHIP NHS TRUST JOB EVALUATION AND REBAND POLICY This policy should be read in conjunction with Worcestershire Mental Health Partnership NHS Trust Policy Data Unique
More informationIncremental Pay Progression Policy and Procedure
Incremental Pay Progression Policy and Procedure Date Impact Assessed: Version No: 1 No of pages: 14 Date of Issue: March 2015 Date of next review: March 2016 Distribution: All employees Published: Contents
More informationRisk Management Strategy, Policy and Guidance
Risk Management Strategy, Policy and Guidance 11.0 Risk Management EQUALITY IMPACT The Trust strives to ensure equality of opportunity for all both as a major employer and as a provider of health care.
More informationAuthor s job title Head of Clinical Coding and Data Quality Directorate IM&T
Document Control Title Data Quality Policy Author Author s job title Head of Clinical Coding and Data Quality Directorate IM&T Department Clinical Coding Version Date Issued Status Comment / Changes /
More informationANNUAL WORKFORCE & ORGANISATION DEVELOPMENT REPORT
Item 10.3 ANNUAL WORKFORCE & ORGANISATION DEVELOPMENT REPORT 2015-2016 1. INTRODUCTION The purpose of this report is to provide the NHS Hull Clinical Commissioning Group Board (CCGB) with a summary of
More informationUNCLASSIFIED. ISO27002 Organising Information Security. Restrictions? If Y please give the reason for the restriction below.
Meeting Paper title Executive Team Date 18/06/12 ISO27002 Organising Information Security Agenda item 3 Discussion time Purpose of paper Decision 15 mins Restrictions on public access including staff Restrictions?
More informationProtection of Pay and Conditions of Service (As a Result of Organisational Change)
Protection of Pay and Conditions of Service (As a Result of Organisational Change) Document Owner ENHCCG Document Author Jenny Holland, Senior HR Advisor Version Directorate Authorised By FINAL Human Resources
More informationDirectorate of Strategy & Planning DATA QUALITY POLICY
Directorate of Strategy & Planning DATA QUALITY POLICY Reference: FPP003 Version: 1.6 This version issued: 24/06/14 Result of last review: Minor changes Date approved by owner (if applicable): N/A Date
More informationControlled Document Number: Version Number: 002. On: October Review Date: October 2020 Distribution: Essential Reading for: Page 1 of 12
Equality and Diversity in Employment Policy CONTROLLED DOCUMENT CATEGORY: CLASSIFICATION: PURPOSE Controlled Document Number: Policy Version Number: 002 Controlled Document Sponsor: Controlled Document
More informationSTAFF APPRAISAL AND MANAGEMENT SUPERVISION POLICY
STAFF APPRAISAL AND MANAGEMENT SUPERVISION POLICY Version: 6 Ratified by: Date ratified: March 2016 Title of originator/author: Title of responsible committee/group: Date issued: March 2016 Review date:
More informationPrevent Training and Competencies Framework
Prevent Training and Competencies Framework NHS England INFORMATION READER BOX Directorate Nursing Publications Gateway Reference: 06915 Document Purpose Document Name Guidance Prevent Training and Competencies-Framework
More informationBurton Hospitals NHS Foundation Trust. On: 22 January Review Date: December Corporate / Directorate. Department Responsible for Review:
POLICY DOCUMENT Burton Hospitals NHS Foundation Trust DATA QUALITY POLICY Approved by: Trust Management Team On: 22 January 2016 Review Date: December 2018 Corporate / Directorate Clinical / Non Clinical
More informationDate: INFORMATION GOVERNANCE POLICY
Date: INFORMATION GOVERNANCE POLICY Information Governance Policy IGPOL/01 Information Systems Corporate Services Division March 2017 1 Revision History Version Date Author(s) Comments 0.1 12/12/2012 Helen
More informationActing Up and Secondment Policy and Procedures
Acting Up and Secondment Policy and Procedures Version Number: V2.0 Name of originator/author: Deputy Director of Workforce and Organisational Development Name of responsible committee: JNCC & Trust Management
More informationFIXED TERM CONTRACT POLICY. Recruitment and Selection Policy Secondment Policy. Employment Policy. Officer / CSP
FIXED TERM CONTRACT POLICY Reference No: UHB 173 Version No: 2 Previous Trust / LHB Ref No: T 297 Documents to read alongside this Policy Recruitment and Selection Policy Secondment Policy Redeployment
More informationProvision of Use of Work Equipment Policy
Provision of Use of Work Equipment Policy Ratified Status Approved Approved Issued March 2017 Approved By Consultation Equality Impact Assessment Formal Executive Team CCG Corporate Governance & Risk Manager
More informationScanning Documents Policy
Scanning Documents Policy Reference No: Version: 3 Ratified by: P_IG_11 LCHS Trust Board Date ratified: 12 th September 2017 Name of originator/author: Name of approving committee/responsible individual:
More informationHERTFORDSHIRE PARTNERSHIP UNIVERSITY NHS FOUNDATION TRUST JOB DESCRIPTION
HERTFORDSHIRE PARTNERSHIP UNIVERSITY NHS FOUNDATION TRUST JOB DESCRIPTION Job Title: Staff Bank Bureau Booking Administrator Grade: Band 3 Directorate: Responsible to: Accountable to: Base: Hours: Human
More informationPay Protection Policy V2.0
V2.0 Table of Contents 1. Introduction... 3 2. Purpose of this Policy/Procedure... 3 3. Scope... 3 4. Definitions / Glossary... 3 5. Ownership and Responsibilities... 4 5.1. Role of the Chief Executive...
More informationSpecial Leave Policy. Special Leave Policy
Special Leave Policy Responsible Director: Author and Contact Details: Document Type: Target Audience: Document Purpose/ Scope: Date Approved/ Ratified: Approved/Ratified by: Director of HR & Governance
More informationPosition Description
Position Description Position: Reports To: Direct Reports: Chief Executive Officer IFL- 247 Board of Directors Corporate Services Manager Health Services Manager Senior Medical Officer Purpose of the Role
More informationWORCESTERSHIRE MENTAL HEALTH PARTNERSHIP NHS TRUST PROCEDURE FOR STAFF RETURNING TO WORK ON REDUCED HOURS AS PART OF A REHABILITATION PROGRAMME
WORCESTERSHIRE MENTAL HEALTH PARTNERSHIP NHS TRUST PROCEDURE FOR STAFF RETURNING TO WORK ON REDUCED HOURS AS PART OF A REHABILITATION PROGRAMME This policy should be read in conjunction with Worcestershire
More informationHSCIC Audit of Data Sharing Activities:
Directorate / Programme Data Dissemination Services Project Data Sharing Audits Status Approved Director Terry Hill Version 1.0 Owner Rob Shaw Version issue date 20/04/2016 HSCIC Audit of Data Sharing
More informationDOCUMENT CONTROL PAGE. Health and Safety Policy Statement
Review Circulation Application Ratification Originator or modifier Minor Amendment Supersedes Title DOCUMENT CONTROL PAGE Title: Health and Safety Policy Statement Version: 5.0 Reference Number: HSP 1
More informationPolicy for Pay Progression Using Gateways
Policy for Pay Progression Using Gateways Policy HR 18 January 2008 Document Management Title of document Policy for Pay Progression Using Gateways Type of document Policy HR 18 Description This policy
More informationJOB DESCRIPTION. Department: Hertfordshire and West Essex Sustainability and Transformation Partnership.
JOB DESCRIPTION Job Title: STP Programme Manager Department: Hertfordshire and West Essex Sustainability and Transformation Partnership. Location: Base Hatfield, Hertfordshire, but required to work agilely.
More informationInformation Asset Management Procedure
Procedure Number: IG02 Version: 2.0 Approved by: Information Governance Working Group Date approved: July 2016 Ratified by: Audit and Risk Committee Date ratified: September 2016 Name of originator/author:
More informationJOB DESCRIPTION. Audiology, Dermatology, ENT, Oral Services & Plastic Surgery
JOB DESCRIPTION Job Title: Department: Reports to: Liaises with: Service Delivery Manager - Fixed term post Audiology, Dermatology, ENT, Oral Services & Plastic Surgery Head of Service Staff at all levels
More informationMOBILE AND REMOTE WORKING POLICY
Policy reference number : IG/21 MOBILE AND REMOTE WORKING POLICY Purpose of document The purpose of this policy is to provide NHS Birmingham Cross City CCG (BCCCG) staff with a framework for mobile and
More informationDraft Internal Audit Plan 2012/13 Audit Committee (September 2012) Airedale NHS Foundation Trust
Draft Internal Audit Plan 2012/13 (September 2012) Contents 1. Introduction 2. Risk Assessment 3. Internal Audit Plan Appendix A: 3 Year Indicative Plan 1 1. Introduction MIAA s approach to planning focuses
More informationDATA QUALITY POLICY. Written By: Deputy Director of Information. Authorised By: Chief Executive. Date: September Date: 11 October 2016
DATA QUALITY POLICY Document Author Written By: Deputy Director of Information Authorised Authorised By: Chief Executive Date: September 2016 Date: 11 October 2016 Lead Director: Executive Director of
More informationLead Employer Flexible Working Policy. Trust Policy
Lead Employer Flexible Working Policy Type of Document Code: Policy Sponsor Lead Executive Recommended by: Trust Policy Deputy Director of Human Resources Director of Human Resources Date Recommended:
More informationHONORARY EMERITUS STATUS FOR RETIRING CONSULTANT STAFF (MD10)
HONORARY EMERITUS STATUS FOR RETIRING CONSULTANT STAFF (MD10) If you require a copy of this policy in an alternative format (for example large print, easy read) or would like any assistance in relation
More informationDoncaster Council Data Quality Strategy
Doncaster Council Data Quality Strategy 2016/17-2020/21 Better Data, Better Services Approving Body Date of Approval Date of Implementation Next Review Date Review Responsibility Version Doncaster Council
More informationReckonable Service Policy
Reckonable Service Policy Reckonable Service Policy Policy ref no: HR030-14 Author (inc job title) Judith Champion, Senior HR Business Manager Date Approved May 2014 Approved by Quality and Assurance Group
More informationHours of Work: 37.5 hours per week (part time hours negotiable)
JOB DESCRIPTION Post Title: Head of Performance Assurance Location: NHS Oldham CCG Headquarters (Ellen House) Salary/Grade: Band 8c Hours of Work: 37.5 hours per week (part time hours negotiable) Type
More informationBeltane Fire Society Equality and Diversity Policy
1. Introduction Beltane Fire Society volunteers and staff come from a wide range of backgrounds, skills, attitudes and experiences and we believe that engaging with these will make our festivals as a whole
More informationThe Newcastle upon Tyne Hospitals NHS Foundation Trust. Employment Policies & Procedures
The Newcastle upon Tyne Hospitals NHS Foundation Trust Employment Policies & Procedures Maintaining Services During Adverse Weather Conditions and Public Transport Disruption Policy Version.: 3.0 Effective
More informationPROCESS APPRAISAL OF CHAIR
Appendix 1 PROCESS APPRAISAL OF CHAIR August 2013 INTRODUCTION The Monitor NHS Foundation Trust Code of Governance states: The board of governors which is responsible for the appointment and re-appointment
More informationThe Newcastle upon Tyne Hospitals Foundation NHS Trust. Employment Policies and Procedures
The Newcastle upon Tyne Hospitals Foundation NHS Trust Employment Policies and Procedures Staff Leaving the Trust or Moving within the Trust Procedure Version No.: 5.6 Effective Date: 13 December 2017
More informationSponsorship of Clinical Research Studies
Sponsorship of Clinical Research Studies Category: Summary: Equality Impact Assessment undertaken: Policy The UK Policy Framework for Health and Social Care 2017 (UKPF) and The Medicines for Human Use
More informationThe Newcastle upon Tyne Hospitals NHS Foundation Trust. Energy Policy
1 Introduction The Newcastle upon Tyne Hospitals NHS Foundation Trust Policy Version No.: 4 Effective From: 05 July 2017 Expiry Date: 05 July 2020 Date Ratified: 30 May 2017 Ratified By: Sustainable Healthcare
More informationGrievance Policy and Procedure
Grievance Policy and Procedure Reference No: P_HR_46 Version: 5 Ratified by: LCHS NHS Trust Board Date ratified: 9 th January 2018 Name of originator/author Rachael Potter Name of responsible committee/individual:
More information