In order to clarify new and existing requirements, a series of papers was issued to NHS organisations setting out responsibilities for information governance and for providing additional assurances on information governance to each strategic health authority (SHA), or to Monitor, the Independent Regulator of NHS Foundation Trusts. The papers issued by David Nicholson, Chief Executive of the NHS and Matthew Swindells, the Department of Health's interim Chief Information Officer included guidance on secure transfers of personal data; reporting of data losses as Serious Untoward Incidents (SUIs); incorporating information assurance within an organisation's Statement of Internal Controls and the appointment of a Senior Information Risk Owner.

To download the communications, please visit Information Governance Assurance Programme: http://www.connectingforhealth.nhs.uk/systemsandservices/infogov/igap