Knowledge Base

This page allows you to browse the IG Toolkit Knowledge Base. All the resources listed on this page are also referenced in the 'Knowledge Base Resources' section of the relevant individual requirements.

To search for specific resources, enter search criteria below and click 'Search'.

To view all resources, leave the search criteria blank.


(only shows results where all keywords match)

TitleTypeDetailsCreation DateLast Review DateRequirement(s)
Anonymisation Standard for Publishing Health and Social Care Data Specification (Process Standard) External web site link Key Resources View 01-2014 01-2015 334
Audit Programme - Mobile and Remote Working
(DOC, 67 KB)
Exemplar Materials View 07-2007 01-2015 330
Bite-sized Good Practice Guide: Internet and Email
(DOC, 393 KB)
Exemplar Materials View 05-2009 01-2015 223
Bite-sized Good Practice Guide: Media Disposal
(DOC, 313 KB)
Exemplar Materials View 05-2009 01-2015 331
Bite-sized Good Practice Guide: Mobile Computing
(DOC, 337 KB)
Exemplar Materials View 05-2009 01-2015 330
Bite-sized Good Practice Guide: Safe Computing
(DOC, 347 KB)
Exemplar Materials View 05-2009 01-2015 223
British Medical Association: Confidentiality and Disclosure of Health Information Tool Kit External web site link Key Resources View 01-2015 01-2015 223
BS ISO/IEC 27000 Series of Information Security Standards External web site link Key Resources View 07-2007 01-2015 330, 331, 335
Business Link: Employees working from home External web site link Useful Web Sites View 08-2003 01-2015 330
Care Quality Commission: Regulations for service providers and managers External web site link Key Resources View 01-2015 01-2015 223
Cheshire: Adapted Risk Assessment Form for General Practice
(DOC, 260 KB)
Exemplar Materials View 05-2007 01-2015 332
Cheshire: Handling Security Incidents Affecting Patients Confidentiality
(DOC, 66 KB)
Exemplar Materials View 05-2007 01-2015 333
Code of Practice for Social Care Workers & Employers External web site link Key Resources View 01-2002 01-2015 334
Confidentiality Advisory Group (CAG) of the Health Research Authority website External web site link Useful Web Sites View Unknown 01-2015 220, 335
Cyber Essentials External web site link Useful Web Sites View 02-2015 02-2015 335
Data Protection Act 1998 External web site link Key Resources View 07-1998 01-2016 122, 222
David Nicholson and ICO letter 2011
(PDF, 51 KB)
Key Resources View 01-2014 01-2015 123
David Nicholson Communications External web site link Key Resources View Unknown 01-2015 330
DH: Confidentiality NHS Code of Practice 2003 External web site link Key Resources View 11-2003 02-2016 121, 122, 123, 220, 223, 334
DH: Confidentiality NHS Code of Practice: Supplementary Guidance - Public Interest Disclosures 2010 External web site link Key Resources View Unknown 01-2015 220
DH: Example Confidentiality Clauses
(DOC, 25 KB)
Exemplar Materials View 01-2008 01-2015 122
DH: Information Security NHS Code of Practice 2007 External web site link Key Resources View 04-2007 01-2016 121, 123, 330, 331, 332, 333, 335
DH: NHS IG - Good Practice Guide for the Transfer of Batched Person Identifiable Data External web site link Key Resources View 01-2007 01-2015 223, 330
DH: NHS IG - Guidelines on Use of Encryption to Protect Person Identifiable and Sensitive Information 2008 External web site link Key Resources View 01-2008 01-2015 223
DH: NHS IG - Home Working Policy and Procedural Template 2008
(DOC, 44 KB)
Exemplar Materials View 01-2009 01-2015 330
DH: NHS IG - Information Risk Management - Good Practice Guide 2009 External web site link Key Resources View 01-2009 01-2015 331, 332, 333, 335
DH: NHS IG - Laptop Security Policy 2008
(DOC, 66 KB)
Exemplar Materials View 01-2007 01-2015 330
DH: NHS IG - Remote Access Policy 2003
(DOC, 74 KB)
Exemplar Materials View 01-2007 01-2015 330
DH: NHS IG - Short Message Service & Texting
(PDF, 48 KB)
Key Resources View 01-2010 01-2015 223
DH: NHS IG - Staff Declaration Form
(DOC, 59 KB)
Exemplar Materials View 04-2010 01-2015 121
DH: Records Management NHS Code of Practice 2008 External web site link Key Resources View Unknown 01-2016 121, 123
DH: Research Governance Framework for Health and Social Care 2005 External web site link Key Resources View Unknown 01-2015 120
DH: The Caldicott Guardian Manual 2010 External web site link Key Resources View 03-2010 02-2016 220, 334
Directgov: Employment Contracts External web site link Key Resources View Unknown 01-2015 122
East Surrey: Confidentiality Clause for Staff Contracts 2002
(DOC, 35 KB)
Exemplar Materials View 04-2007 01-2015 122
East Surrey: Incident Reporting Policy 2002
(DOC, 66 KB)
Exemplar Materials View 05-2007 01-2015 333
European Commission: International Transfers Home Page External web site link Useful Web Sites View 01-2015 01-2015 222
General Medical Council: Confidentiality 2009 External web site link Key Resources View 10-2009 01-2015 121, 122, 223
General Practice template: Staff Declaration Form.doc
(DOC, 57 KB)
Exemplar Materials View 05-2010 01-2015 223
Government Response to Report of the Caldicott2 Review
(PDF, 757 KB)
Key Resources View 01-2014 01-2015 220, 334
HM Government: Information Sharing Guidance
(PDF, 1111 KB)
Key Resources View 10-2008 01-2015 223
HMG: Cyber Essentials Scheme External web site link Useful Web Sites View 02-2015 02-2015 335
HSCIC - IG Lead Job Description and Person Specification
(DOCX, 120 KB)
Exemplar Materials View 01-2014 01-2015 120
HSCIC IG Resource Pack External web site link Exemplar Materials View 09-2008 01-2015 122, 223, 331, 333
HSCIC Trust Information Governance Policy
(DOC, 42 KB)
Exemplar Materials View 01-2005 01-2016 121
HSCIC: Template - Assignment of Mobile Computing Equipment Form
(DOCX, 19 KB)
Exemplar Materials View 01-2014 01-2015 330
HSCIC: Template Mobile Computing Equipment Asset Log
(DOCX, 18 KB)
Exemplar Materials View 01-2014 01-2015 330
HSCIC: Template Staff Guidelines on Using Mobile Computing Equipment
(DOCX, 22 KB)
Exemplar Materials View 01-2014 01-2015 330
HSCIC: AQP Template - Information Asset Register
(DOC, 78 KB)
Exemplar Materials View 04-2012 01-2015 331
HSCIC: Checklist Guidance for Reporting, Managing and Investigating Information Governance and Cyber Security Serious Incidents Requiring Investigation
(PDF, 442 KB)
Key Resources View 05-2015 05-2015 333
HSCIC: E and T Standard 3 - Learning Needs Analysis External web site link Useful Web Sites View Unknown 01-2015 123
HSCIC: Good Practice Guidelines - Application Security External web site link Key Resources View 03-2006 01-2015 223
HSCIC: Hosted Team Template - Information Governance Policy
(DOCX, 26 KB)
Exemplar Materials View 01-2015 01-2015 121
HSCIC: Information Governance Toolkit Incident Reporting Tool Publication Statement
(PDF, 62 KB)
Key Resources View 06-2013 01-2015 333
HSCIC: Information Governance Web Pages External web site link Useful Web Sites View Unknown 01-2015 120, 121
HSCIC: Safe Haven Briefing: Secure transfer of personal identifiable information by fax
(PDF, 154 KB)
Key Resources View 01-2014 01-2015 223
HSCIC: Sending an encrypted email from NHSmail to a non-secure email address
(PDF, 364 KB)
Key Resources View 02-2015 02-2016 223
HSCIC: What You Should Know About Information Governance Booklet External web site link Key Resources View 01-2015 01-2015 120
ICO Anonymisation Code of Practice External web site link Key Resources View 01-2014 01-2015 334
ICO Anonymisation Code of Practice Summary External web site link Key Resources View 01-2014 01-2015 334
Information Commissioner: Assessing Adequacy - International Data Transfers External web site link Key Resources View Unknown 01-2015 222
Information Commissioner: Contact Details External web site link Useful Web Sites View Unknown 01-2016 222
Information Commissioner: Guidance Index External web site link Useful Web Sites View Unknown 01-2016 222
Information Commissioner: Health Sector specific guides provided by the ICO External web site link Key Resources View 05-2002 02-2016 220
Information Commissioner: Home Page External web site link Useful Web Sites View Unknown 01-2015 122
Information Commissioner: Model Contract Clauses - International Transfers of Personal Data External web site link Key Resources View Unknown 01-2015 222
Information Commissioner: Outsourcing - A Guide for Small and Medium Sized Businesses External web site link Key Resources View 04-2009 01-2015 122
Information Commissioner: The Eighth Data Protection Principle and International Data Transfers External web site link Key Resources View Unknown 01-2016 222
Information Mapping Tool Guidance External web site link Key Resources View 01-2007 01-2015 223
Information Standards Board for Health and Social Care; Standard ISB 1523: Anonymisation Standard for Publishing Health and Social Care Data Amd 20/2010 External web site link Key Resources View 01-2014 01-2015 334
ISO/IEC 27035:2011 ‘Information technology – Security techniques – Information security risk management’ External web site link Useful Web Sites View 01-2014 01-2015 333
ISO/TS 25237:2008 - Health Informatics Pseudonymisation External web site link Key Resources View 01-2009 01-2015 334
IT Operations: Review of User Privileges
(RTF, 328 KB)
Exemplar Materials View 09-2003 01-2015 330
IT Operations: User Access Management Policies
(PDF, 33 KB)
Exemplar Materials View 04-2007 01-2015 330
Joint IT Committee: The Good Practice Guidelines for GP electronic patient records Version 4 (2011)
(PDF, 1732 KB)
Key Resources View 03-2011 01-2015 223
Mapping between the requirements of ISO/IEC 27001:2005 and ISO/IEC 27001:2013
(PDF, 373 KB)
Key Resources View 01-2014 01-2015 330, 331, 332, 333, 334, 335
Mid Essex Hospital: Photo Request card
(PDF, 383 KB)
Exemplar Materials View 03-2010 01-2015 220
Moving from ISO/IEC 27001:2005 to ISO/IEC 27001:2013
(PDF, 497 KB)
Key Resources View 01-2014 01-2015 330, 331, 332, 333, 334, 335
NHS Constitution for England External web site link Key Resources View 01-2015 01-2015 220, 221, 223
NHS Employers: Identity Check Standards External web site link Key Resources View Unknown 01-2015 122
NHS Employment Check Standards External web site link Key Resources View Unknown 01-2016 122
NHSmail - Public-Facing Site External web site link Useful Web Sites View Unknown 01-2015 223
Pseudonymisation Implementation Project - Guidance on De-identification
(PDF, 145 KB)
Key Resources View 11-2009 01-2015 334
Pseudonymisation Implementation Project - Guidance on Terminology
(PDF, 124 KB)
Key Resources View 11-2009 01-2015 334
Pseudonymisation Implementation Project - Implementation Guidance on Local NHS Data Usage and Governance for Secondary Uses
(PDF, 153 KB)
Key Resources View 11-2009 01-2015 334
Report of the Caldicott2 Review - Information: To share or not to share? The Information Governance Review
(PDF, 776 KB)
Key Resources View 01-2014 01-2015 220, 334
Surrey HIS: Data Protection Leaflet - Best Practice Guidelines
(PDF, 272 KB)
Exemplar Materials View 04-2006 01-2016 223
Surrey: Information Security and Confidentiality Guide for General Practice
(DOC, 1366 KB)
Exemplar Materials View 10-2002 01-2015 332
The Independent Information Governance Oversight Panel: Annual Report External web site link Key Resources View 01-2015 01-2015 220, 221
The NHS Care Record Guarantee for England External web site link Key Resources View 07-2009 02-2016 122, 220, 221, 223, 334
Walton Centre: Access Authentication Standard (Physical)
(PDF, 92 KB)
Exemplar Materials View 03-2005 01-2015 332
Walton Centre: Asset Management Standard
(PDF, 128 KB)
Exemplar Materials View 03-2005 01-2015 331
Walton Centre: Communications Standard
(PDF, 120 KB)
Exemplar Materials View 03-2005 01-2015 330
Walton Centre: Full Information Security Management System
(DOC, 35 KB)
Exemplar Materials View 03-2005 01-2015 330
Walton Centre: Incident Reporting Standard
(PDF, 182 KB)
Exemplar Materials View 03-2005 01-2015 333
Walton Centre: Incident Response Standard (Legal and Forensics)
(PDF, 192 KB)
Exemplar Materials View 03-2005 01-2015 333
Walton Centre: Remote Working Standard
(PDF, 121 KB)
Exemplar Materials View 03-2005 01-2015 330

Page Processing Time: 0.11 seconds
Page Render Time:  seconds
Supported By: SOCITM society logo SOCITM Local CIO Council logo Directors of adult social services logo