You do not appear to have javascript enabled.

This website requires javascript to be enabled.

Please contact the help desk if you are unable to re-instate the javascript option on your browser.

General Practice Version 14.1 (2017-2018)

Requirements List

Printable version

Req No	Description	Action
Information Governance Management
14.1-114	Responsibility for Information Governance has been assigned to an appropriate member, or members, of staff
14.1-115	There is an information governance policy that addresses the overall requirements of information governance
14.1-116	All contracts (staff, contractor and third party) contain clauses that clearly identify information governance responsibilities
14.1-117	All staff members are provided with appropriate training on information governance requirements
Confidentiality and Data Protection Assurance
14.1-211	All transfers of personal and sensitive information are conducted in a secure and confidential manner
14.1-212	Consent is appropriately sought before personal information is used in ways that do not directly contribute to the delivery of care services and objections to the disclosure of confidential personal information are appropriately respected
14.1-213	There is a publicly available and easy to understand information leaflet that informs patients/service users how their information is used, who may have access to that information, and their own rights to see and obtain copies of their records
Information Security Assurance
14.1-304	Monitoring and enforcement processes are in place to ensure NHS national application Smartcard users comply with the terms and conditions of use
14.1-316	There is an information asset register that includes all key information, software, hardware and services
14.1-317	Unauthorised access to the premises, equipment, records and other assets is prevented
14.1-318	The use of mobile computing systems is controlled, monitored and audited to ensure their correct operation and to prevent unauthorised access
14.1-319	There are documented plans and procedures to support business continuity in the event of power failures, system failures, natural disasters and other disruptions
14.1-320	There are documented incident management and reporting procedures

Page Processing Time: 0.08 seconds
Page Render Time: seconds

Supported By: