Records management policy. Document author Assured by Review cycle. Audit and Risk Committee. 1. Introduction Purpose or aim Scope...

Similar documents
IGPr002 - Information Governance Management Framework

Information Governance Strategy and Management Framework

INFORMATION GOVERNANCE POLICY

Data Quality Policy

INFORMATION GOVERNANCE STRATEGY IMPLEMENTATION PLAN

NHS SOUTH DEVON AND TORBAY CLINICAL COMMISSIONING GROUP INFORMATION LIFECYCLE MANAGEMENT POLICY

Induction Policy. Document author Assured by Review cycle. 1. Introduction Policy Statement Purpose or Aim Scope...

Information Governance Strategic Management Framework

Information Governance Policy

Information Governance Assurance Framework

DATA QUALITY POLICY. Version: 1.2. Management and Caldicott Committee. Date approved: 02 February Governance Lead

INFORMATION GOVERNANCE STRATEGY

Information Governance Management Framework

INFORMATION GOVERNANCE STRATEGY. Documentation control

Information Governance Policy and Management Framework

IG01 Information Governance Management Framework

Data Protection Policy

Information Governance and Records Management Policy March 2014

Records Management Plan

Information Governance Management Framework Version 6 December 2017

INFORMATION GOVERNANCE POLICY

POLICY ON MANAGING POLICIES, PROCEDURES AND GUIDANCE DOCUMENTS

Data protection (GDPR) policy

Information Governance Policy

Freedom of Information (FOI) Policy

Humber Information Sharing Charter

Role Title: Chief Officer Responsible to: CCG chairs - one employing CCG Job purpose/ Main Responsibilities

NHSLA Risk Management Standards for NHS Trusts Providing Community Services 2011/12

Data Protection Policy

Knowledge Management Strategy

DATA QUALITY POLICY Review Date: CONTENT

Scanning Documents Policy

1. Each employee is responsible for managing college records in a responsible and professional manner.

Consulted With Post/Committee/Group Date Eileen Hatley Data Quality Manager 15 th March 2016

JOB DESCRIPTION. The post holder will be managerially accountable to the Associate Director of the Business Development Unit.

Author s job title Head of Clinical Coding and Data Quality Directorate IM&T

INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK

INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK

Information Governance Management Framework

Minor adjustments from IG Steering Group 0.3 Neil Taylor September 2013

NEWCASTLE CLINICAL TRIALS UNIT STANDARD OPERATING PROCEDURES

INDUCTION POLICY AND PROCEDURE

THE GENERAL DATA PROTECTION REGULATION: GUIDANCE ON THE ROLE OF THE DATA PROTECTION OFFICER

Honorary Contracts Procedure

HERTFORDSHIRE PARTNERSHIP UNIVERSITY NHS FOUNDATION TRUST JOB DESCRIPTION

NHS BARNSLEY CCG DATA QUALITY POLICY SEPTEMBER 2016

RISK MANAGEMENT COMMITTEE TERMS OF REFERENCE

OFFICER USE ONLY. 2. Position No: Title of Immediate Supervisor: University Secretary 3. Level: 10

HSCIC Audit of Data Sharing Activities:

Managing Ministers Office Records

SABRe Design & Development Process

NHSLA Risk Management Standards for NHS Trusts Providing Acute Services 2011/12. Milton Keynes Hospital NHS Foundation Trust Level 1

Information Governance Management Framework 2017/18 Reference: IG12

INFORMATION AND RECORDS MANAGEMENT POLICY

RECORDS MANAGEMENT POLICY AND PROCEDURES

INTERNAL AUDIT DIVISION REPORT 2017/022. Audit of knowledge and records management at the United Nations Framework Convention on Climate Change

GUIDELINES FOR IMPLEMENTING A PRIVACY MANAGEMENT PROGRAM For Privacy Accountability in Manitoba s Public Sector

Aligning Records Management with ICT/ e-government and Freedom of Information in East Africa

IT Enterprise Services. SharePoint. for records management

AAMI Quality Systems White Paper: Comparison of 21 CFR Part 820 to ISO 13485:2016 1

Volunteer Placement Scheme Policy

Version: 4.0. Training Policy for Medical Devices. Name of Policy: Effective From: 24/10/2012

RISK MANAGEMENT STRATEGY

Risk Management Strategy, Policy and Guidance

Introduction GUIDELINES FOR THE SELECTION OF AN ELECTRONIC DOCUMENTS AND RECORDS MANAGEMENT SYSTEM

Data Protection/ Information Security Policy

INFORMATION GOVERNANCE MANAGEMENT FRAMEWORK POLICY

Records Disposal Schedule Charles Darwin University Procurement Services Charles Darwin University

Technical Services Document #: TS-0007 Internal Audit Procedure Version #: 01

MANUAL HANDLING PROCEDURE

Conflict of Interest Policy. Version Approved by Approval date Effective date Next full review. All persons subject to the UNSW Code of Conduct

A Quality Assurance Framework for Knowledge Services Supporting NHSScotland

R&D Manager Hillingdon Hospital. Revision History Effective Date Reason For Change. recommendations Version no:

Work Health and Safety Management Systems and Auditing Guidelines

Business and Finance Manager

Stellenbosch University Records Management Policy

EQUALITY AND DIVERSITY COMMITTEE. Terms of Reference

Information Asset Management Procedure

Risk Management Strategy

Burton Hospitals NHS Foundation Trust. On: 22 January Review Date: December Corporate / Directorate. Department Responsible for Review:

BOARD CHARTER JUNE Energy Action Limited ABN

Bury Local Care Organisation Provider Alliance

Open Government Implementation Plan (OGIP)

THE HARBOUR MEDICAL PRACTICE EASTBOURNE

Security Operations. BS EN ISO 9001: 2008 Issue 1.2: 21/10/2016. Quality Manual. Managing Director. Controlled / Uncontrolled when printed

Standard Operating Procedure 1 (SOP 1) Printing

Risk Management Strategy

NHS HEALTH SCOTLAND PARTNERSHIP AGREEMENT

Lisa Quinn Executive Director of Performance and Assurance. Lead Officer

Appraisal Policy - for All School Staff

[PDR13] NEW PRODUCT REQUEST & CUSTOMER SET-UP TEMPLATE

Norfolk and Waveney Sustainability and Transformation Job Description. Interim Programme Director Sustainability and Transformation Programme (STP)

Non-Executive Director

Reflection paper on GCP compliance in relation to trial master files (paper and/or electronic) for management, audit and inspection of clinical trials

Financial Accountant Job Description

BARRIE PUBLIC LIBRARY VOLUNTEER POLICY MOTION #17-35 Reviewed June 22, 2017

LOCATION: Alpha Plus Fostering, Oldham

DePaul University Records Management Manual October 1, 2016

Position Description

General user conditions for supplier s applications and the AUMA supplier portal

Transcription:

Records management policy Board library reference Document author Assured by Review cycle P017 Head of Compliance Audit and Risk Committee 3 Years This document is version controlled. The master copy is on Ourspace. Once printed, this document could become out of date. Check Ourspace for the latest version. Contents 1. Introduction...3 2. Purpose or aim...3 3. Scope...3 4. Policy statement...3 4.1 Retention and disposal schedules... 3 4.2 Paper documents... 3 4.3 Workgroups... 4 4.4 Files and data management standards... 4 5. Training...4 6. Roles and responsibilities...4 6.1 The Chief Executive... 4 6.2 The Senior Information Risk Owner (SIRO)... 4 6.3 Executive Directors and Local Delivery Unit Directors... 4 6.4 Integrated Governance Group... 4 6.5 Head of Compliance... 4 6.6 All Users of AWP ICT Systems... 4 7. Implementation...5 8. Standards...5 9. Monitoring and audit...5 Records management policy Review date: 15/03/2020 Version No: 6.00 Page 1 of 6

10. Archiving of master documents...5 11. References...5 Records management policy Review date: 15/03/2020 Version No: 6.00 Page 2 of 6

1. Introduction As a public body we are required by law to manage our records properly. Legislation such as the Data Protection Act 1998 and Freedom of Information Act 2000 set out specific requirements in relation to the creation and management of records. 2. Purpose or aim Records management is vital to the delivery of our services in an orderly, efficient, and accountable manner. Effective records management will help ensure that we have the right information at the right time to make the right decisions; this policy provides a baseline framework of standards and practices for the management of records. 3. Scope This is a Trust-wide Policy and applies to all staff and personnel operating under the auspices of the Trust, including employees, locums, contractors, temporary staff, students, service user representatives, volunteers and partner agency staff. This Policy applies to the three identified types of information processed, transmitted and maintained by the Trust. These are: Health and Social Care records ( clinical records about service users and carers) Staff records ( corporate records about staff) Management records ( corporate records about the Trust) Due to the integration in Health & Social Care Teams of staff from partner organisations there may be additional data controllers interested in the content of the single Health & Social Care Record of which the Trust is the data controller. Where a third party has an organisational policy that differs from this Policy, a formal agreement as to which policy statement applies shall be outlined and agreed in an appropriate protocol if necessary. In the absence of such an agreement, this Policy shall be deemed to have precedence. 4. Policy statement The Trust shall implement appropriate systems and practices for the management of each type of information to ensure that the Trust s Business Records document the Trust s activities and that information can be identified and retrieved when required. The Trust mandates the use of consistent standards for strategies, policies, standard operating procedures and associated documents, which can be found in the document development and management policy and associated document development handbook. (put in hyperlinks once approved and uploaded). 4.1 Retention and disposal schedules It is a requirement that all Trust records are retained for a minimum period of time for legal, operational and safety reasons. The length of time for retaining records will depend on the type of record and its relation to the Trust s functions. The Trust has adopted the retention periods set out in the Information Governance Alliance records management code of practice for health and social care 2016 available on the Department of Health Website. 4.2 Paper documents Records management policy Review date: 15/03/2020 Version No: 6.00 Page 3 of 6

Paper (non-clinical) documents should be considered either as uncontrolled versions of electronic documents or where a paper document is identified as a record it must be scanned into the relevant OurSpace Library for appropriate record management. Once transferred to OurSpace, the paper version must be securely destroyed unless there is a legal reason for its retention in accordance with Retention and Disposal Schedules. 4.3 Workgroups Existing document repositories on network workgroups (shared drives) shall be migrated to the relevant OurSpace Library according to business priority. 4.4 Files and data management standards The Trust has documented files and data management standards which should be adopted for corporate records. 5. Training All relevant Trust staff shall be made aware of their responsibilities for record-keeping and record management through formal induction as well as local induction and ongoing on the job training. 6. Roles and responsibilities 6.1 The Chief Executive The Chief Executive is responsible for ensuring the Trust s compliance with applicable legislation and regulation. 6.2 The Senior Information Risk Owner (SIRO) The Executive Director of Finance and Commerce and Deputy Chief Executive shall be the Trust Senior Information Risk Owner (SIRO) and shall represent any relevant information risk to the Board of Directors. 6.3 Executive Directors and Local Delivery Unit Directors Executive Directors and Local Delivery Unit Directors are responsible for compliance with the records management standards specified in this policy within their directorates and local delivery units. 6.4 Integrated Governance Group The Integrated Governance Group shall monitor and report on the implementation of the Trust s Information Governance Management System. 6.5 Head of Compliance Compliance with this policy shall be monitored by the Head of Compliance, reporting to the Integrated Governance Group. 6.6 All Users of AWP ICT Systems All users of AWP Information and Communications Technology systems are responsible for ensuring that their use of these systems is conducted in compliance with this policy. Records management policy Review date: 15/03/2020 Version No: 6.00 Page 4 of 6

7. Implementation An alert notifying staff of the change to this policy shall be issued using the Trust s standard policy alert system. Implementation of the policy in practice shall be conducted by managers with responsibility for ensuring compliance. This Policy shall be published in the Board Policy Library on OurSpace. 8. Standards The following standards apply: The Records Management NHS Code of Practice, The Public Records Act 1958, The Data Protection Act 1998, The Freedom of Information Act 2000, The Common Law Duty of Confidentiality, The Confidentiality NHS Code of Practice, The NHS Information Governance Guidance on Legal and Professional Obligations, Information Security Management NHS Code of Practice, and Any new legislation affecting records management as it arises. 9. Monitoring and audit Compliance with this policy shall be monitored by the Head of Compliance, reporting to the Integrated Governance Group. 10. Archiving of master documents The Board Policy Document Library on OurSpace is the only recognised repository for master versions of policy documents. Copies of this document must therefore not be stored elsewhere on the system, e.g. in workgroups. The OurSpace document library system shall provide records management functionality to allow for the retrieval of previous versions of policy documents for audit purposes. 11. References Data Protection Act 1998 Freedom of Information Act 2000 Computer Misuse Act 1990 The Caldicott Report 1998 NHS Information Security Management: Code of Practice NHS Confidentiality: Code of Conduct NHS Records Management: Code of Practice The International Standards for Information Security Management Health & Social Care Records Policy Records management policy Review date: 15/03/2020 Version No: 6.00 Page 5 of 6

Model Action Plan for Developing Records Management Compliant with The Lord Chancellor s Code of Practice under Section 46 of The Freedom of Information Act 2000 A full list of the applicable legislation referenced in the compilation of this policy can be viewed in the NHS Information Governance Guidance on Legal and Professional Obligations Version History Version Date Revision description Editor Status 1.0 14/01/2004 Version 1 by IM&T Steering Group Head of IM&T 2.0 26/03/2008 by the Board of Directors Information Governance Manager 3.0 01/12/2009 by Quality and Healthcare Governance Committee Information Governance Manager 4.0 18/03/2013 Finance and Planning Committee Information Governance Manager 5.0 15/04/2016 Audit and Risk Committee Head of Compliance 6.0 15/03/2017 Addition of procedures for records management Head of Compliance Records management policy Review date: 15/03/2020 Version No: 6.00 Page 6 of 6

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback