NHS IT Security Flashcards
(11 cards)
What are the 3 principles of Information Assurance?
- Confidentiality
- Integrity
- Availability
What is the purpose of the NHS Data Security and Protection Toolkit?
To check compliance with legislation.
Assess/improve data security.
What toolkits and procedures are there to manage the security of NHS information?
- Information Governance Toolkit
- Data Security and Protection Toolkit
- Local Trust policies and procedures
- Information Assurance Audit
What is an Information Assurance Audit?
Regular review of performance against the standards, codes of practice and/or best practice
What was the function of NHS Digital?
Standard setting, data collection, implementation/management of information systems
What is DTAC?
Digital Technology Assessment Criteria
for health and social care gives staff, patients and citizens confidence that the digital health tools they use meet our clinical safety, data protection, technical security, interoperability and usability and accessibility standards, bringing together legislation and good practice.
When should DTAC be used?
All new digital technology should be assessed against the DTAC
What ate the NIS regulations 2018?
Security of Network and Information Systems Regulations 2018
What is the intention of the NIS regulations?
To protect key national infrastructure
What is the NHS Data Security and Protection Toolkit?
An online self-assessment tool which allows organisations to measure their performance against the National Data Guardian’s 10 data security standards.
Who must use the NHS Data Security and Protection Toolkit?
All organisatons which have access to NHS patient data and systems must use the toolkit to provide assurance that they are practising good data security and that personal information is handled correctly.
