INFORMATION GOVERNANCE

Slides:



Advertisements
Similar presentations
Information Governance, Love it or Hate it!
Advertisements

Records Management and the NHS Code of Practice (Foundation) Information Governance Policy Team NHS Connecting for Health.
The Data Quality Team Information Governance Ext 8168 The Importance Of Data Quality High Data Quality is Important to: * Improve Patient Care * Reduce.
Records Management and the NHS Code of Practice (Foundation) Information Governance Policy Team NHS Connecting for Health.
Information Governance – Who Cares? Alistair Stewart Information Governance Co-ordinator.
And the finer details of patient privacy TCH Confidential Understanding HIPAA.
Data Protection Information Management / Jody McKenzie.
The Health Insurance Portability and Accountability Act of 1996– charged the Department of Health and Human Services (DHHS) with creating health information.
NAU HIPAA Awareness Training
Confidentiality & Records Management. What is Information Governance? What is Records Management?
Revised Caldicott Manual- Practice Managers Groups Revised Caldicott Manual – November 2008.
Health and Safety - an update Ian Gillett Safety Director.
How to Find Your Way Around… SEPT - MANDATORY TRAINING 1. You can play the PowerPoint, and find the Test here EXAMPLE COURSE.
Information Governance
Audit of Practice Around Record Keeping and Partner Notification Maeve Cross & Martin Murchie.
SECURITY: Personal Health Information Protection Act, 2004 this 5 min. course covers: changing landscape of electronic health records security threats.
Practical Information Management
Information Governance Sylvia Reynolds Senior Resources Officer / Information Governance Manager.
The Policy Company Limited © Control of Infection.
How to Find Your Way Around… 1. You can play the PowerPoint, and find the Test here EXAMPLE COURSE.
Child Protection Level Recognising potential indicators of child maltreatment Recognising the potential impact of a parent/carers physical and.
Female Genital Mutilation
Data Protection STFC Presentation to PPD Senior Staff 26/11/2009 FoI/DP team.
‘A Healthier Dorset’ Safeguarding Children Primary Care Update September 22 nd 2011 Safeguarding Children: the role of Dentists.
Data Protection Act ‘ What you need to know’ Corporate Information Governance Team Strategic Intelligence.
Child Protection Level To increase participants awareness of the key aspects of child maltreatment. To feel more confident in where to go and.
HIPAA THE PRIVACY RULE. 2 HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of anti- depressant medications.
IM NETWORK MEETING 20 TH JULY, 2010 CONSULTATION WITH 3 RD PARTIES.
CALDICOTT PRESENTATION. History Caldicott report published in 1997 and implemented in 1999 Inquiry chaired by Dame Fiona Caldicott.
Your health record How the local NHS uses and protects the information held about you Other ways that your records may be used Your local NHS services.
12/12/2015 Data Protection Act /12/2015 The DP Act A law that protects personal privacy and upholds individual’s rights Anyone who handles personal.
AIMS To raise awareness of some of the issues To offer advice on solutions To identify what might be considered as ‘best practice’ To launch new Policies.
Data Practices in Minnesota December Outline for this presentation Minnesota data practices laws Classification of government data Government entity.
Introduction to Information Governance (IG) Mark Scallan – Head of IG/Data Protection Officer Angela Kaye – IG Officer.
Standard Circular 57 The purpose of this circular is to clearly set out the responsibility of educational establishments and services in the matter of.
Information Security January What is Information Security?  Information Security is about the physical security of our equipment and networks as.
1 Information Governance (For Dental Practices) Norman Pottinger Information Governance Manager NHS Suffolk.
FGM Mandatory reporting Debbie Raymond December 2015.
Quality Assurance Lincolnshire County Council Provider Forum Handout 2010.
Understanding Privacy An Overview of our Responsibilities.
Introduction to Data Protection Plan »Brief Introduction to Data Protection  Example  Principles  P3, 4, 7  Sensitive Data  Conditions for Processing.
Annual Update 2016 Protecting Children and Ensuring their Wellbeing.
NHS Accessible Information Standard Provider Forum Briefing Carol Williams Adult Social Care Practice and Safeguarding Team 3 May 2016.
Information Governance A refresher for all staff who have previously gone through the full course.
Consent, Capacity and Confidentiality
Data Protection and Confidentiality
And the finer details of patient privacy
The Safeguarding Adult’s Course Level Two
Data Protection Session
Child protection.
Data Protection Scenarios
Incident Reporting Webinar Begins at 12.30
MyHR and Data Protection
Records management and data security
How to Find Your Way Around…
Move this to online module slides 11-56
Information for Patients Please return to reception
How we use Your Health Records
D3 Confidentiality.
INFORMATION GOVERNANCE
Recording Clinical Data
Recording Clinical Data
Understanding Data Protection
How to find your way around …
Safeguarding 2016 Level 2 For all clinical staff Approx. 55 mins START.
How to find your way around …
Move this to online module slides 11-56
Handling information 14 Standard.
Privacy and Security Basics Training
Presentation transcript:

INFORMATION GOVERNANCE Awareness for Acute Services Staff

WHAT IS INFORMATION GOVERNANCE? Caldicott Confidentiality Data Protection Data Quality Freedom of Information Information Security Records Management Information Governance Sits alongside Clinical Governance. We have an Information Steering Group which meet quarterly and is chaired by Andy Crawford, Head of Clinical Governance. It encompasses Data Protection, Caldicott, Records Management, FOIs, Confidentiality, Information Security and Data Quality.

OBJECTIVES Refresher on data protection and confidentiality Legal obligations Keeping information safe Reporting Breaches NHSGG&C policies and procedures

WHAT IS DATA PROTECTION? “DATA PROTECTION IS CONCERNED WITH THE SAFEGUARDING / PROTECTING OF PERSONAL IDENTIFIABLE DATA, WHETHER IT RELATES TO PATIENTS, STAFF OR OTHERS”

RESPONSIBILITY FOR DATA PROTECTION The Information Commissioner’s Office is responsible for ensuring organisations comply with the Act. They can: Impose monetary fines of up to £500,000 Audit health boards – inspect and confiscate files Interview staff Prosecute and/or fine individuals Impose other sanctions

8 PRINCIPLES

Principle 6: What Can People Access? Health / Occupational Records Personnel File Payroll Information Complaint / Grievance Files Datix Reports Emails Witness Statements

Scenarios Your Aunt phones and asks if you can check when her appointment is due. You check Trak and tell her. Is this appropriate? You are worried about a blood test and when you are back at work you have a look at the results. Is this appropriate? Can you use unencrypted USB memory sticks within the Health Board?

WHO IS RESPONSIBLE? Everyone! Legal Obligation Terms of Employment NHS Scotland Code of Practice Policies and Procedures

HOW DO BREACHES HAPPEN? Faxing/Emailing information to the wrong recipient Theft/Loss of files, notes or papers Theft/Loss of IT equipment Posting information about patients, colleagues or the Organisation on social networking sites Inappropriate access to information (eg. your own, family etc)

BREACHES The Individual The Organisation The staff member responsible A breach of confidentiality can have serious consequences for: The Individual The Organisation The staff member responsible

Human Error – Paying Attention Most breaches we see are not intentional, but down to human error

INFORMATION COMMISSIONER Over 50 organisations have been fined between £1,000 - £400,000 British Pregnancy Advice Service £200,000 Glasgow City Council £150,000 Regal Chambers GP Surgery £40,000 Blackpool Teaching Hospitals NHS Foundation Trust £185,000 Eileen McMillan, Clerical Officer, NHS Portsmouth (5th April 2017) £653.75 and a victim surcharge of £65, Criminal Record and lost her job!

NHSGGC Breaches Two letters to GP sent to one of the patients with same surname as GP Two referrals from another HB sent to one of the patients in error – contained sensitive clinical history Letter to GP re patient and fertility treatment sent to Dentist in error Doctor left patient files at bus stop – handed into RAH by member of the public Nurse left 15 patient files in car boot over weekend – car stolen and files never retrieved Patient letters found in hospital grounds from burst bag

SCENARIO In the course of your working duty, you see someone who is known to you attending an outpatient clinic. You then go home and discuss this with family/friends. Have you breached your duty of confidence?

Further guidance available in the Data Breach Policy REPORTING BREACHES All ACTUAL, SUSPECTED or POTENTIAL breaches should be reported using the Datix system as soon as possible. This should be done as soon as the breach occurs Inform your line manager If IT equipment is missing/stolen – report to the IT Service Desk and Police if necessary. If appropriate, also inform the Information Governance Department Further guidance available in the Data Breach Policy

POLICIES AND GUIDELINES Search for Information Governance Framework on Staff Net Or click the eHealth Button and select Policies and Procedures

CONTACT DETAILS Kerry Lochrie, Project Lead Email: kerry.lochrie@ggc.scot.nhs.uk Tel: 0141 355 2059 Isobel Brown, Information Governance Manager Email: Isobel.Brown@ggc.scot.nhs.uk Tel: 0141 355 2020 Stephen Harris, Information Security Manager Email: Stephen.Harris@ggc.scot.nhs.uk Tel: 0141 278 4728 Or our team mailbox is: data.protection@ggc.scot.nhs.uk

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.