Information Sharing Gateway Kevin Whittaker University Hospitals of Morecambe Bay NHS FT On behalf of Lancs & Cumbria IG Group.

Slides:

Advertisements

Similar presentations

HIPAA Security Presentation to The American Hospital Association Dianne Faup Office of HIPAA Standards November 5, 2003.

Advertisements

Corporate Records Management (Practitioner) Information Governance Policy Team NHS Connecting for Health.

Health Records Management Practitioner

Auditing, Assurance and Governance in Local Government

Introducing the Administrative Data Research Network Tanvi Desai.

29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.

Chapter © 2009 Pearson Education, Inc. Publishing as Prentice Hall.

The Value in Conducting a Privacy Impact Assessment

HIPAA COMPLIANCE WITH DELL

Management challenges and strategies: Unit M4. Learning outcomes By the end of this section, you will be able to; – Identify the key management challenges.

The Challenges of Implementing Multi- platform IT Systems across the AO Function Nicola Cartwright Head of Awarding Systems and Services 1st4sport Qualifications.

Establishing a baseline of the seven day services clinical standards in acute care ‘A how to guide’ To activate the links in this slide set please view.

Surveillance & Special Measures Care & Support West Spring Conference 30 April 2015.

HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.

Name Position Organisation Date. What is data integration? Dataset A Dataset B Integrated dataset Education data + EMPLOYMENT data = understanding education.

Hampshire Health Record Hampshire Health Record Improving clinical care through sharing information Stockport Health Record Awareness Event 16 th September.

Supporting Work Experience within the Public Sector Claire Flavell Work-related Learning Manager Lincolnshire & Rutland EBP Sarah-Jane Gallimore Trust.

Assessment Entry Module (AEM) Kick-off November 15, 2012 interRAI Preliminary Screener Toronto Central LHIN.

Broadcasting Participation Fund Inc. Update November 24, 2015 Presented by Andre Auger, CPA, CGA, CFE Costs Officer and CEO

Assessment Entry Module (AEM) Kick-off November 1 or November 2, 2012.

1 Information Governance (For Dental Practices) Norman Pottinger Information Governance Manager NHS Suffolk.

Information Sharing for Integrated Care A 5 Step Blueprint.

The Evolving IG Lead Role Phil Walker IGA. The IG Lead Role I am constantly surprised by the breadth and variety of work undertaken by IG Leads, but there.

The Impact of the Allied Health Professions National Delivery Plan in NHS GGC Anne Galbraith Director of Allied Health Professions.

Incorporating Privacy Into Systems Development Methodology Phil Moleski Director Corporate Information Technology Branch Saskatchewan Health

NHS Information Governance Risk Management. Introduction Information risk to be managed in a robust manner Assurance to be provided in a consistent manner.

New Economy Breakfast Seminar – 13 July What Has Changed?

General Data Protection Regulation (EU 2016/679)

Julie Kerry Thomas Kohut

Advocacy-driven monitoring Chatham House 2015 David Young

Homerton university hospital NHS Foundation Trust

Overview of Structure General Data Protection Regulation (GDPR)

Information Sharing Gateway

Introduction/Background Aim of the assessment was to assess the impact of the 3 institutions MOHCDGEC, PO-RALG and MOFP in the flow of funds from national.

Office 365 Security Assessment Workshop

Costa Rica’s Integrated Transparency Framework

Information Sharing for Integrated care A 5 Step Blueprint

Integrated Management System and Certification

Administrative Data Centre (ADC) ……. a GDPR ready data hub?

Information Governance

General Data Protection Regulations: what you really need to know

INTEGRATION BASIC FACTS Third Sector Health & Social Care Support Team

Letter of Intent process 24th November 2017

Information Sharing Gateway

North East and Cumbria Digital Care Event

GDPR Security: How to do IT? IT reediness for competitive advantage

The session will commence at Please mute your microphone

The session will commence at Please mute your microphone

The session will commence at Please mute your microphone

The session will commence at Please mute your microphone

NextGen Access Control Platform

Electronic Personal Child Health record (ePCHR)

The session will commence at Please mute your microphone

General Data Protection Regulation

The Transformation of Care and Support Informatics as an Enabler, not a Barrier to Change

Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .

Presentation to the INTOSAI Working Group on IT Audit Systems assurance and data analytics for continued audit quality and improved efficiency of audits.

INTEGRATION BASIC FACTS IntegrationSupport Team

WCCIS Information Governance

The session will commence at Please mute your microphone

21 NOVEMBER 2018 FREE STATE PROVINCE

What Governors need to know about GDPR

17 JANUARY 2019 MPUMALANGA PROVINCE

How To Identify and Reduce Business Risk

Data Privacy by Design Expanding Security for bepress Users

Data Security and Protection Toolkit Assurance 2018/19

National data opt-out - Preparing for implementation

Trust wide set up of Video Consultations – stages

UK Wide Working Mary Cubitt Programme Implementation Manager

Presentation transcript:

Information Sharing Gateway Kevin Whittaker University Hospitals of Morecambe Bay NHS FT On behalf of Lancs & Cumbria IG Group

The challenge The ICO Information Sharing COP

Information Sharing COP The ICO Information Sharing COP – May 2011Information Sharing COP The response - Data Sharing Agreements – Administrative burden – Wheels being reinvented – High level signatures required – Difficult, difficult, difficult The result – Organisations struggle to comply – DSAs often written and signed retrospectively

The plan Let’s build a Mercedes system

The original concept – late 2013

Build trust - but know your risks A system built around IG Assurance Adherence to robust process (as recommended by ICO) i.e. risk assessment of dataflows Deployed at scale Shared approaches – sector agnostic ‘Good enough’ links to Privacy Monitoring (the new audit) & Consent

by IG leads, for IG leads Work electronically, aligned with Project Management Organisations register and provide assurance by organisation Facility to sponsor organisations Sign up to common standards of working (Tier 0/1) Capture, risk assess and approve flows in a system Manage, report and review flows in the system Understand where your risks are Publish the flows so transparency for public ‘Invest time in actions that add value’

Who was involved? thanks to Development Group - health (acute / specialist / MH/CCG), NWAS, LAs, Police reps from L&C IG Group UHMB Project Team and Developer IG Consultant (former ICO) Agile Development started November 2014

The solution The Information Sharing Gateway

Where are we now? 2 websites (sandpit and live) Organisational registration, IG assurance, sponsorship and role based assess live MoU sign up live (the new ‘Tier 1’) Asset register (shop window) live Internal data flows as well as shared (for one stop reporting) live Risk assessments (Privacy Impact, security) live Admin groups ready to go Implementation > 300 orgs iNetwork Innovation Award winners November 2015

Benefits “Normalises” recording of information flows, PIA and information sharing agreements and without sector specific language so all types of organisations can use it Allows IG staff to focus on support for smaller organisations /front line teams /new projects Supports reuse of agreements around ‘often used’ technologies with minimal fuss / amendments Owned by participating organisations so they can use as they wish Supports IG compliance and breach management

Where is it? is our ‘work in progress’ sandpit system (to test new functionality with dummy data) have a look – try it Please get in touch

The future Openness and integration

Patient / service user view Who has access to my records and data (searchable API) For what purpose? What safeguards are in place?

APIs and integration Develop an API to allow integration with sharing platforms Q – Sharing Platform – Does this organisation have a sharing agreement with that organisation to share this data for that purpose? A – Information Sharing Gateway – Yes