Initiative: Information Governance Management
|
|
- Mervyn Golden
- 6 years ago
- Views:
Transcription
1 Royal Devon & Exeter Information Governance Information Governance (IG) Toolkit Action Plan Key Requirements Reporting Date 18/03/2011 Programme Manager Sharon Collingwood Project Start Date 30/07/2010 Project Manager Sharon Rowland Project End Date (baseline) 31/10/2010 Overal Status This Period RED Project End Date (current) 31/03/2011 RAG Status Last Period RED Key to review of evidence Sufficient appropriate and relevant evidence available to meet criteria No evidence provided to meet the criteria Evidence provided insufficient to meet the assurance required Level not attempted Text in Blue denotes actions underway/completed since Internal Audit review Initiative: Information Governance Management Information Governance Management Framework (101) Formal Contractual Arrangements (110) 2 1 2a: examples of signed contract clauses and list of organisations needing additional Personal Identifiable Data (PID) contracts. Action plan in place to deliver by 31 st March. Actions completed since audit Employment Contracts (111) 0 IG Training ( 112) 1 1a: HR senior management statement is pending receipt of confirmation of IG undertakings from staff. 2a: Action plan in place to deliver by 31 st March. Waiting for statement from HR confirming figures in response to reply facility for staff confirmation of IG responsibilities 2a: Requires statement from senior management confirming that an action plan is in place to deliver training to 95% staff by the end of June Currently being prepared for SIRO to approve. SR/Y/IGT WORK1011/IGT Action Plan Key Requirements/Mar 11 v1 1
2 Initiative: Data Protection and Confidentiality IG is supported by adequate confidentiality and data protection knowledge, skills and experience (200) Staff Understanding of the security of personal information and confidentiality of service users (201) Seeking consent to use patient information for reasons other than treatment (202) Information provided on proposed uses of PID information (203) All transfers of personal information to countries outside the UK have been documented, reviewed and tested to determine compliance with the Data Protection Act 1998 and Department of Health guidelines (209) All new processes, services, information systems and other relevant information assets are developed and implemented in a secure and structured manner (210) 2 2 N/a 2 SR/Y/IGT WORK1011/IGT Action Plan Key Requirements/Mar 11 v1 2
3 Initiative: Information Security The IG agenda is supported by adequate information security skills, knowledge and experience (300) A formal information security risk assessment and management programme for key information assets (301) Documented information security incident event reporting, management and procedures (302) Established business processes and procedures that satisfy the organisation s obligations as a Registration Authority (303) Plan for ensuring compliance with the terms and conditions of Smartcard usage, which includes procedures for monitoring and enforcing compliance (304) Documented requirements for access controls for all key information assets and appropriate user access management procedures, technical functionality and management controls for all key information assets (305) b: Report of risk assessments to be made available. Action plan in place to deliver by 31 st March. Report will be presented by SIRO to Information Governance Steering Group on 29/3/11 2b: Evidence of incident reporting in PID contracts not provided. Addendum to contract sent out, pending return of signed addendums. Action plan in place to deliver by 31 st March. Actions completed since audit 2c: List of Smartcard users and audit of use. Action plan in place to deliver by 31 st March. Actions completed since audit 2a/b: System Level Security Policies (SLSPs) for critical systems to be completed. Action plan in place to deliver by 31 st March. Awaiting receipt of outstanding SLSPs for priority one critical systems SR/Y/IGT WORK1011/IGT Action Plan Key Requirements/Mar 11 v1 3
4 An effectively supported Senior Information risk Owner with ownership of the organisation s information risk policy and information risk management strategy (307) Data mapping transfer of hardcopy and digital person identifiable and sensitive information have been identified, mapped and risk assessed (308) Policy and procedures are in place to ensure that Information Communication Technology (ICT) networks operate securely (313) Policy and procedures ensure that mobile computing and teleworking are secure (314) All information assets that hold, or are, personal data are protected by appropriate organisational and technical measures (323) c: Upload list of assigned Information Asset Owners (IAOs). 2b: Evidence of outcomes of risk assessments for critical systems. Action plan in place to deliver by 31 st March. 1c: Action completed 2b: Report currently being prepared for Information Governance Steering Group on 29/3/11 2a: Completed validation of information flows. Action plan in place to deliver by 31 st March. Data mapping in progress due to complete 24 March 1b: Documented network risk assessment pending. 1c: Confirmation of review of controls to be uploaded. Action plan in place to deliver by 31 st March. 2a: Network procedures should be fully documented and uploaded. 1b: Action completed 1c: Statement from Senior Information Risk Owner ( SIRO) to review/approve risk assessment 2a: Awaiting receipt of Network procedures 2a: List of remote access users. Action plan in place to deliver by 31 st March. Action completed Initiative: Clinical Information There is consistent and comprehensive use of the NHS Number in line with National Patient Safety Agency requirements (401) 0 1d: Upload systems compatibility risk assessment. 2a/b NHS Number project progress documentation. Action plan in place to deliver by 31 st March. All actions completed SR/Y/IGT WORK1011/IGT Action Plan Key Requirements/Mar 11 v1 4
5 SR/Y/IGT WORK1011/IGT Action Plan Key Requirements/Mar 11 v1 5
Information Governance Strategy and Management Framework
Information Governance Strategy and Management Framework Summary: This strategy sets out the framework, structure, system and accountabilities for Information Governance Management within NHS Eastbourne,
More informationInformation Governance Management Framework
Management Framework Summary: This document sets out the framework, structure, system and accountabilities for Management within West Kent CCG Clinical Commissioning Group. APPROVED BY: Chief Finance Officer
More informationHeart of England NHS Foundation Trust
Heart of England NHS Foundation Trust Data protection audit report Executive summary February 2017 1. Background 1. Background The Information Commissioner is responsible for enforcing and promoting compliance
More informationInformation Governance Management Framework
Information Governance Management Framework November 2014 Author: Responsibility: Lynda Harris, Head of Information Governance All Staff Effective Date: November 2014 Review Date: November 2015 Reviewing/Endorsing
More informationINFORMATION GOVERNANCE STRATEGY IMPLEMENTATION PLAN
INFORMATION GOVERNANCE STRATEGY & IMPLEMENTATION PLAN 2015-2018 Disclaimer The latest version of this document is located on PTHB intranet. Please check the review date and if there are any doubts contact
More informationINFORMATION GOVERNANCE STRATEGY
INFORMATION GOVERNANCE STRATEGY Document Number 2009/49/V2 Document Title Information Governance Strategy Author Phil Cottis Author s Job Title Information Governance & RA Manager Department IM&T Ratifying
More informationInformation Governance Policy
Information Governance Policy Version: 4.0 Ratified by: NHS Bury Clinical Commissioning Group Information Governance Operational Group Date ratified: 19 th September 2017 Name of originator /author (s):
More informationInformation Governance Strategic Management Framework
Information Governance Strategic Management Framework 2016-2018 Susan Meakin Information Governance Manager June 2016 Information Governance DOCUMENT CONTROL: Version: 2 Ratified by: Health Informatics
More informationData Quality Policy
Cambridgeshire and Peterborough Clinical Commissioning Group (CCG) Data Quality Policy 2017-2019 Ratification Process Lead Author(s): Reviewed / Developed by: Approved by: Ratified by: Associate Director
More informationIG01 Information Governance Management Framework
IG01 Information Governance Management Framework 1 INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK Document History Document Reference: IG01 Document Purpose: The document compliments all other Information
More informationInformation Governance Policy and Management Framework
Putting Barnsley People First Information Governance Policy and Management Framework Version: 2.0 Approved By: Governing Body Date Approved: February 2014 Name of originator / author: Richard Walker Name
More informationHSCIC Audit of Data Sharing Activities:
Directorate / Programme Data Dissemination Services Project Data Sharing Audits Status Approved Director Terry Hill Version 1.0 Owner Rob Shaw Version issue date 20/04/2016 HSCIC Audit of Data Sharing
More informationInformation Governance Policy
Information Governance Policy Applicable to All employees Version1.0 Last Updated March 2014 CONFIDENTIAL Page 2 of 6 Contents 1. Objectives 3 2. Scope 3 3. Principles 3 4. Information Governance Policy
More informationIGPr002 - Information Governance Management Framework
IGPr002 - Information Governance Management Framework Page 1 of 10 Table of Contents Information Governance Management Framework... 1 Why we need this Framework... 3 What the Framework is trying to do...
More informationInformation Governance Assurance Framework
Document Reference POL008 Document Status Approved Version: V4.0 DOCUMENT CHANGE HISTORY Initiated by Date Author IG Toolkit Requirements November 2010 IG Manager Version Date Comments (i.e. viewed, or
More informationINFORMATION GOVERNANCE STRATEGY. Documentation control
INFORMATION GOVERNANCE STRATEGY Documentation control Reference Date Approved Approving Body Version Supersedes Consultation Undertaken Target Audience Supporting procedures GG/INF/01 TRUST BOARD Information
More informationRecords management policy. Document author Assured by Review cycle. Audit and Risk Committee. 1. Introduction Purpose or aim Scope...
Records management policy Board library reference Document author Assured by Review cycle P017 Head of Compliance Audit and Risk Committee 3 Years This document is version controlled. The master copy is
More informationInformation Governance Management Framework Version 6 December 2017
Information Governance Management Framework Version 6 December 2017 Page 1 of 8 Introduction Robust information governance requires clear and effective management and accountability structures, governance
More informationINFORMATION GOVERNANCE POLICY
INFORMATION GOVERNANCE POLICY Unique Reference / Version Primary Intranet Location Information Management & Governance Secondary Intranet Location Policy Name Information Governance Policy Version Number
More informationInformation Assets: Security and Risk Management Policy. Choice, Responsiveness, Integration & Shared Care
s: Security and Risk Management Policy Choice, Responsiveness, Integration & Shared Care Worcestershire Mental Health Partnership NHS Trust Reader Box Document Type: Document Purpose: Unique identifier:
More informationInformation Governance Annual Report. Public Board Meeting
Title: Report to: Information Governance Annual Report Trust Board Date: 27 March 2017 Security Classification: Public Board Meeting Purpose of Report: This report provides an update in relation to Information
More informationInformation Governance Policy
Information Governance Policy Date completed: February 2016 Responsible Director: Approved by/ date: Director of Compliance Review date: October 2017 Amended: Author: Ben Westmancott Information Governance
More informationNHS SOUTH DEVON AND TORBAY CLINICAL COMMISSIONING GROUP INFORMATION LIFECYCLE MANAGEMENT POLICY
NHS SOUTH DEVON AND TORBAY CLINICAL COMMISSIONING GROUP INFORMATION LIFECYCLE MANAGEMENT POLICY Version Control Version: 2.0 dated 17 July 2015 DATE VERSION CONTROL 04/06/2013 1.0 First draft of new policy
More informationRecords Management Policy
Records Management Policy November 2013 Page 1 of 12 Policy Title: Records Management Policy Reference Number: CORP 08/003 Original Implementation Date: June 2011 Reviewed: November 2013 Next Review Date:
More informationThe Royal Wolverhampton NHS Trust
The Royal Wolverhampton NHS Trust Trust Board Report Meeting Date: Monday 30 March, 2015 Title: Information Governance Toolkit Submission V12 2014/15 Executive Summary: Action Requested: Report of: Author:
More informationINFORMATION GOVERNANCE MANAGEMENT FRAMEWORK
NHS South West Lincolnshire Clinical Commissioning Group (CCG) INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK Document History: Document Reference: Document Purpose: IG01 Date Ratified: January 2015 Ratified
More informationEast Riding of Yorkshire Council Data protection audit report. Executive summary March 2014
East Riding of Yorkshire Council Data protection audit report Executive summary March 2014 1. Background The Information Commissioner is responsible for enforcing and promoting compliance with the Data
More informationHSCIC Audit of Data Sharing Activities:
Directorate / Programme Data Dissemination Services Project Data Sharing Audits Status Approved Director Terry Hill Version 1.0 Owner Rob Shaw Version issue date 21/04/2016 HSCIC Audit of Data Sharing
More informationMinor adjustments from IG Steering Group 0.3 Neil Taylor September 2013
Author(s) Andrew Thomas Version 0.3 Version Date 21 August 2013 Implementation/approval Date Review Date August 2014 Review Body Governing Body Policy Reference Number 014 Version Author Date Reason for
More informationDATA QUALITY POLICY. Version: 1.2. Management and Caldicott Committee. Date approved: 02 February Governance Lead
DATA QUALITY POLICY Version: 1.2 Approved by: Date approved: 02 February 2016 Name of Originator/Author: Name of Responsible Committee/Individual: Information Governance, Records Management and Caldicott
More informationInformation Governance Management Framework 2017/18 Reference: IG12
Information Governance Management Framework 2017/18 Reference: IG12 Compliance with all CCG policies, procedures, protocols, guidelines, guidance and standards is a condition of employment. Breach of policy
More informationINFORMATION GOVERNANCE MANAGEMENT FRAMEWORK
INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK Document History Document Reference: IG33 Document Purpose: The document complements all other Information Governance policies and sets out the management arrangements
More informationInformation Governance Strategic Management Framework
Document Summary Information Governance Strategic Management Framework 2017-2019 This framework sets out the Cumbria Partnership NHS Foundation Trust (the organisation) Strategic Management Framework and
More informationInformation Governance Management Framework
Information Governance Management Framework Document Status: Approved Version: v 1.6 DOCUMENT CHANGE HISTORY Version Date Comments (i.e. viewed, or reviewed, amended, approved by person or committee v1.0
More informationBurton Hospitals NHS Foundation Trust. On: 22 January Review Date: December Corporate / Directorate. Department Responsible for Review:
POLICY DOCUMENT Burton Hospitals NHS Foundation Trust DATA QUALITY POLICY Approved by: Trust Management Team On: 22 January 2016 Review Date: December 2018 Corporate / Directorate Clinical / Non Clinical
More informationNHS BARNSLEY CCG DATA QUALITY POLICY SEPTEMBER 2016
Putting Barnsley People First NHS BARNSLEY CCG DATA QUALITY POLICY SEPTEMBER 2016 Version: 1.0 Approved By: Governing Body Date Approved: 8 September 2016 Name of originator / author: Name of responsible
More informationAuthor s job title Head of Clinical Coding and Data Quality Directorate IM&T
Document Control Title Data Quality Policy Author Author s job title Head of Clinical Coding and Data Quality Directorate IM&T Department Clinical Coding Version Date Issued Status Comment / Changes /
More informationHSCIC Audit of Data Sharing Activities:
Directorate / Programme Data Dissemination Services Project Data Sharing Audits Status Approved Director Terry Hill Version 1.0 Owner Rob Shaw Version issue date 20/04/2016 HSCIC Audit of Data Sharing
More informationINFORMATION GOVERNANCE POLICY AND FRAMEWORK
INFORMATION GOVERNANCE POLICY AND FRAMEWORK Policy approved by: Audit and Governance Committees Date: 9 th October 2017 Next Review Date: September 2018 Version: 4.0 Information Governance Policy & Framework
More informationData Protection Policy
Data Protection Policy StCH Data Protection Policy - POL 53 vs1 - July 2016 1 Document Control Table Document Title: Data Protection Policy Document Ref: POL 53 Author (name and job title): Karen Anderson,
More informationAgile Working Policy for EMIS Community Health Services
Agile Working Policy for EMIS Community Health Services DOCUMENT NUMBER POL/001/077 DATE RATIFIED May 2017 DATE IMPLEMENTED May 2017 NEXT REVIEW DATE May 2019 ACCOUNTABLE DIRECTOR POLICY AUTHOR Director
More informationNIHR Local Clinical Research Networks
NIHR Local Clinical Research Networks Annual Plans 2014-15 Guidance WORKING DRAFT Version 0.4 WORKING DRAFT v0.4 Document Control This document is updated and issued annually by the national CRN Coordinating
More informationInformation Governance Training Plan
Information Governance Training Plan Page 1 of 10 Paper O2 - CCG_IG_Training_Plan_2017-18_V3.0 Final Paper O2 - CCG_IG_Training_Plan_2017-18_V3.0 Final Information Governance Training Plan Derbyshire Clinical
More informationQualifications: Degree or equivalent experience in relevant subject
Job Description Job Title: Quality and Audit Lead Location: Responsible to: Director of Hours: Organisational Development Accountable to: Chief Executive Responsible for: St Clare Hospice Full time Qualifications:
More informationUNCLASSIFIED. ISO27002 Organising Information Security. Restrictions? If Y please give the reason for the restriction below.
Meeting Paper title Executive Team Date 18/06/12 ISO27002 Organising Information Security Agenda item 3 Discussion time Purpose of paper Decision 15 mins Restrictions on public access including staff Restrictions?
More informationDraft Internal Audit Plan 2012/13 Audit Committee (September 2012) Airedale NHS Foundation Trust
Draft Internal Audit Plan 2012/13 (September 2012) Contents 1. Introduction 2. Risk Assessment 3. Internal Audit Plan Appendix A: 3 Year Indicative Plan 1 1. Introduction MIAA s approach to planning focuses
More informationConsulted With Post/Committee/Group Date Eileen Hatley Data Quality Manager 15 th March 2016
Data Quality Strategy Corporate / Strategic Register No: 11072 Status: Public Developed in response to: Best practice, Trust Requirement Contributes to CQC Regulations 12, 13, 17 Consulted With Post/Committee/Group
More informationINFORMATION GOVERNANCE POLICY
INFORMATION GOVERNANCE POLICY Page 1 of 13 INFORMATION GOVERNANCE POLICY EXECUTIVE SUMMARY Key Messages Principles of Information Governance Openness Confidentiality and Legal Compliance Information Security
More informationInformation Asset Management Procedure
Procedure Number: IG02 Version: 2.0 Approved by: Information Governance Working Group Date approved: July 2016 Ratified by: Audit and Risk Committee Date ratified: September 2016 Name of originator/author:
More informationHonorary Contracts Procedure
Honorary Contracts Procedure Version: 3.0 Bodies consulted: Approved by: Joint Staff Consultative Committee & WMT Executive Management Team Date Approved: 03 October 2017 Lead Manager: Responsible Director:
More informationTitle: Records Management Policy
Title: Records Management Policy Approved: September 2010 Revised: January 2012 Revised: January 2015 Reviewed September 2016 CONTENTS Page No. Scope 3 Statement 4 Aims 5 Following Best Practice 6 Accountability
More informationGeneral Data Protection Regulation (GDPR) Strategy
General Data Protection Regulation (GDPR) Strategy NHS Digital s Approach to Compliance Published October 2017 Copyright 2017 Health and Social Care Information Centre. The Health and Social Care Information
More informationJOB DESCRIPTION. Medical Director
JOB DESCRIPTION Job Title: Accountable to: Deputy Medical Director Medical Director 1. Purpose of Role The Deputy Medical Director will provide support to the Medical Director in delivering the principle
More informationPrivacy Impact Assessment. Integrated Personal Commissioning (IPC) Programme
Privacy Impact Assessment Integrated Personal Commissioning (IPC) Programme Reference number: IG MAY17 Date PIA completed: May 2017 The Clinical Commissioning Group MUST comply with the Data Protection
More informationRegistration Authority and Integrated Identity Management Policy
Registration Authority and Integrated Identity Management Policy Policy Title: Executive Summary: Supersedes: Registration Authority and Integrated Identity Management Policy This policy seeks to identify
More informationProtection of Pay and Conditions of Service (As a Result of Organisational Change)
Protection of Pay and Conditions of Service (As a Result of Organisational Change) Document Owner ENHCCG Document Author Jenny Holland, Senior HR Advisor Version Directorate Authorised By FINAL Human Resources
More informationINFORMATION GOVERNANCE MANAGEMENT FRAMEWORK POLICY
INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK POLICY Version: 1.4 Approved by: Date approved: 19 January 2017 Name of Originator/Author: Name of Responsible Committee/Individual: Date issued: Information
More informationRecords Management Plan
Records Management Plan October 2014 1 2 Document control Title The Scottish Funding Council Records Management Plan Prepared by Information Management and Security Officer Approved internally by Martin
More informationInformation Asset Management Policy
Information Asset Management Policy 1.0 Purpose 1.1 The purpose of this policy is to outline the management of the Fund s information asset register and the actions that will be taken to provide sufficient
More informationHours of Work: 37.5 hours per week (part time hours negotiable)
JOB DESCRIPTION Post Title: Head of Performance Assurance Location: NHS Oldham CCG Headquarters (Ellen House) Salary/Grade: Band 8c Hours of Work: 37.5 hours per week (part time hours negotiable) Type
More informationLisa Quinn Executive Director of Performance and Assurance. Lead Officer
Document Title Reference Number Lead Officer Author(s) (name and designation) Ratified by Data Quality Policy NTW(O)26 Lisa Quinn Executive Director of Performance and Assurance Jennifer Illingworth Deputy
More informationDATA QUALITY POLICY. Written By: Deputy Director of Information. Authorised By: Chief Executive. Date: September Date: 11 October 2016
DATA QUALITY POLICY Document Author Written By: Deputy Director of Information Authorised Authorised By: Chief Executive Date: September 2016 Date: 11 October 2016 Lead Director: Executive Director of
More informationHealth and Social Care Information Centre (ENDPB) Board Meeting Public Session
Health and Social Care Information Centre (ENDPB) Board Meeting Public Session Title of Paper: Report on business activity Board meeting date: 26 April 2013 Agenda Item No: Paper presented by: Paper prepared
More informationITSM, ITIL & ISO/IEC Implementation Toolkit List of Contents
Page: 1 of 5 SMS 1 Blank Templates Basic Checklist Template Basic Meeting Agenda Template Basic Meeting Minutes Template Basic Policy Template Basic Procedure Template Basic Schedule Template Basic Service
More informationMOBILE AND REMOTE WORKING POLICY
Policy reference number : IG/21 MOBILE AND REMOTE WORKING POLICY Purpose of document The purpose of this policy is to provide NHS Birmingham Cross City CCG (BCCCG) staff with a framework for mobile and
More informationGuidelines for Information Asset Management: Roles and Responsibilities
Guidelines for Information Asset Management: Roles and Responsibilities Document Version: 1.0 Document Classification: Public Published Date: April 2017 P a g e 1 Contents 1. Overview:... 3 2. Audience...
More informationBusiness Continuity Policy
Business Continuity Policy To ensure the effective availability of essential products and services, BCQ has raised this Business Continuity Policy in support of a comprehensive program for business continuity,
More informationDate: INFORMATION GOVERNANCE POLICY
Date: INFORMATION GOVERNANCE POLICY Information Governance Policy IGPOL/01 Information Systems Corporate Services Division March 2017 1 Revision History Version Date Author(s) Comments 0.1 12/12/2012 Helen
More information[PDR13] NEW PRODUCT REQUEST & CUSTOMER SET-UP TEMPLATE
SURGICAL & PROSTHETIC DESIGN [PDR13] NEW PRODUCT REQUEST & CUSTOMER SET-UP TEMPLATE FORM NEW PRODUCT REQUEST [PDR13_V3]: LIVE 1 CUSTOM DEVICE DESIGN REQUEST SENDING SCAN DATA Send your scan data via secure
More informationOP-19 (9) Certification Process & Decision
OP-19 (9) Certification Process & Decision Purpose: To provide guidance on certification granting and decision making process. Scope: Guidelines for all kind of audits that comes under the ISO 22000 standards.
More informationCould you help lead the NHS in your area?
Could you help lead the NHS in your area? Non-executive Director and Associate Non-executive Director Candidate information pack Reference: S1671 We value and promote diversity and are committed to equality
More informationGeneral Optical Council. Data Protection Policy
General Optical Council Data Protection Policy Authors: Lisa Sparkes Version: 1.2 Status: Live Date: September 2013 Review Date: September 2014 Location: Internet / Intranet Document History Version Date
More informationNHS National Survey of Adult Inpatients
NHS National Survey of Adult Inpatients Approved Contractor 2006-8 Guidance Material from Snap Surveys August 07 Snap SurveyShop proposal (Healthcare Commission / 1055R/ Staff v03) 1 1. ORGANISATION Snap
More informationISO 14001:2015. EMS Manual.
www.iso-9001-checklist.co.uk Insert your company s name or logo, and address. This EMS manual is the property of Your Company. It must not be reproduced in whole or in part or otherwise disclosed without
More informationGOVERNANCE STRATEGY October 2013
GOVERNANCE STRATEGY October 2013 1. Introduction 1.1. The Central Manchester University Hospitals NHS Foundation Trust believes that the role of the governing body is pivotal to the success of the Trust.
More informationPolicy Document Control Page
Title: Records Management Policy Version: 9 Reference Number: CO20 Policy Document Control Page Keywords Records, management, record keeping, audit, transportation, HR, personnel, health records, child
More informationEU General Data Protection Regulation (GDPR) Tieto s approach and implementation
EU General Data Protection Regulation (GDPR) Tieto s approach and implementation GDPR roles and positions Data subjects Information on processing Consent or other basis for processing Right requests High
More informationITSM, ITIL & ISO/IEC Implementation Toolkit List of Contents
Page: 1 of 5 SMS 1 Blank Templates SMS 1.01 Guidance on templates SMS Basic Meeting Agenda Template SMS Contact List Template SMS Contact Map Template SMS Procedure Template SMS Process RACI Template SMS
More informationInformation Governance, Management & Technology Committee Terms of Reference
Information Governance, Management & Technology Committee Terms of Reference 1. Introduction The Information Governance, Management and Technology (IGM&T) Committee is established on behalf of NHS Rushcliffe
More informationON ARM S LENGTH. 1. Introduction. 2. Background
ADVICE FOR COUNCILLORS ON ARM S LENGTH EXTERNAL ORGANISATIONS 1. Introduction 1.1 This Advice Note, issued by the Standards Commission for Scotland (Standards Commission), aims to provide councillors with
More informationLisbon, 17 May Agustín Puente Escobar State Counsel Head of the Legal Cabinet. Agencia Española de Protección de Datos
The new GDPR. Implications in the pharmaceutical industry Lisbon, 17 May 2017 Agustín Puente Escobar State Counsel Head of the Legal Cabinet 1 New regime. Key topics Personal data: Singling-out information/
More informationDocument Type. Sickness Absence Policy. Document Description. Lead Author(s) Associate Director of People and Workforce Development
Document Title Sickness Absence Policy Document Description Document Type Service Application Human Resources Trust Wide Version 2.1 Policy Reference No POL 156 Ashi Williams Lead Author(s) Associate Director
More informationGRIEVANCE POLICY. NHS Ayrshire and Arran Organisation & Human Resource Development Policy. Policy Reference HRP/013
NHS Ayrshire and Arran Organisation & Human Resource Development Policy GRIEVANCE POLICY Policy Reference HRP/013 Reviewers Name Group/Name(s) Date Policy Review Group Scott Semple July 2013 Lead Responsibility
More informationRisk assessment checklist - Plan and organize
Check Yes or No or N/A (where not applicable). Where a No is indicated, some action may be required to rectify the situation. Cross-references (e.g., See FN 1.01) point to the relevant policy in the First
More informationGuidance on conducting consultations in the HRA Internal HRA guidance only
Guidance on conducting consultations in the HRA Internal HRA guidance only Author: Amanda Hunn Date of Release: 19 th February 2015 Version No. & Status: v.1.0 Final Approved by: EMT Supersedes Version:
More informationCommon Process Bulletin
CP 7.01 Business Principles Guidelines Background Compliance with the law is of vital importance to Joint Ventures (JVs), JV Participants, Users, JV Directors and Managers ( Management ), Participant Representatives,
More informationAPPLICATION PACK. MEDICAL RECEPTIONIST (Maternity Cover) Sid Valley Practice Blackmore Drive Sidmouth Devon EX10 8ET
APPLICATION PACK MEDICAL RECEPTIONIST (Maternity Cover) Sid Valley Practice Blackmore Drive Sidmouth Devon EX10 8ET 01395 512601 About Us Sid Valley Practice is a coastal practice with five full time and
More informationStandard Operating Procedure 1 (SOP 1) Printing
Why we have a procedure? Standard Operating Procedure 1 (SOP 1) Printing This Standard Operating Procedure (SOP) will set out the approved methods of using print devices, and printing within Black Country
More informationRISK MANAGEMENT COMMITTEE TERMS OF REFERENCE
RISK MANAGEMENT COMMITTEE TERMS OF REFERENCE Terms of Reference Agreed by the Committee Signed by the Chair on Behalf of the Committee Print Signature Date 16 th December 2011 Review Date December 2012
More informationHuman Resources. Data Protection Policy IMS HRD 012. Version: 1.00
Human Resources Data Protection Policy IMS HRD 012 Version: 1.00 Disclaimer While we do our best to ensure that the information contained in this document is accurate and up to date when it was printed
More informationStaff Counselling Service
Staff Counselling Service HR66 Additionally refer to : HS01 Health & Safety Policy HR31 Managing Attendance and Employee Wellbeing HR65 Occupational Health Service Version: V1 issued January 2009 V2 approved
More informationThe General Data Protection Regulation (GDPR): Getting in good shape for the deadline Copenhagen, 19 September 2017 Janus Friis Bindslev Partner,
The General Data Protection Regulation (GDPR): Getting in good shape for the deadline Copenhagen, 19 September 2017 Janus Friis Bindslev Partner, Deloitte, Cyber Advisory Table of Contents Introduction
More informationTitle of Report Workforce Report - Quarter 2, Purpose of the report
Agenda Item: 10 Report Number: GB137-16 Venue: NWS CCG HQ, 58 church St, Weybridge, Surrey KT13 8DP Date: Monday 24 October 2016 Meeting: North West Surrey CCG Governing Body Part One Title of Report Workforce
More informationDATA QUALITY POLICY. Ref No:
Ref No: DATA QUALITY POLICY Version: 4e Ratified by: Policy Ratification Group Date ratified: 15 December 2010 Name of author: Head of Information & Performance Name of responsible committee: Quality Committee
More informationSERVICE EQUIPMENT DISPOSAL POLICY
SERVICE EQUIPMENT DISPOSAL POLICY Version 2.1 IT Equipment Disposal Policy COR/047/V2.01 December 2016 updated January 2018 Version 2.1 1 Subject and version number of document: Serial number: Service
More informationPRIVACY IMPACT ASSESSMENT (PIA) TEMPLATE
PRIVACY IMPACT ASSESSMENT (PIA) TEMPLATE Reference No: IG40 Version: 1.2 Purpose of Document: Ratified by: Date ratified: 27 th September 2013 Review Date September 2014 Name of originator/author: Contact
More informationFreedom of Information (FOI) Policy
Freedom of Information (FOI) Policy Subject Freedom of Information Act (2000) Policy number Tbc Approved by Trust Executive Group Date approved March 2015 Version 2 Policy owner Director of Communications
More informationAudit Committee Annual Report. Report of the work of the Audit Committee during 2014/15
Audit Committee Annual Report Report of the work of the Audit Committee during 2014/15 Introduction by the Chair of the Audit Committee This Annual Report to the Board of Directors and the Council of Governors
More informationPOSITION DESCRIPTION Executive Assistant to Clinical Services Director Medico-legal officer
MERCY HEALTH POSITION DESCRIPTION Executive Assistant to Clinical Services Director Medico-legal officer Mercy Values: Compassion, Hospitality, Respect, Innovation, Stewardship, Teamwork Position title:
More informationNHS Greater Glasgow and Clyde Risk Management Steering Group Annual Report and Assurance Statement 2008/09
NHS Greater Glasgow and Clyde Risk Management Steering Group Annual Report and Assurance Statement 2008/09 Introduction The Risk Management Steering Group (RMSG) is responsible for developing a single
More information