The General Data Protection Regulation (GDPR) will become UK law on 25 May 2018. The new regulations will replace the Data Protection Act 1988, bringing us up to date with current practice and ensuring our data is protected. Nowadays with the internet, shopping ‘reward’ cards and location services enabled on our smart phones, our data is everywhere and it is not always used appropriately. Essentially, every business will have a legal responsibility to only collect relevant data with purposeful consent, to ensure data is kept safe & secure and to only use it in a fair appropriate way.
The Information Governance Alliance (IGA) will shortly publish guidance for health and social care on the impact of the changes – we will of course summarise and send ALL appropriate information to you as soon as it becomes available.
In the meantime, the DOH/NHS England have released a document – 2017/18 Data Security & Protection Requirements. The document sets out steps all health and care organisations will be expected to take in 2017/18. In terms of general practice, there are three leadership obligations under which the data security standards are grouped:
For more information/access to the full document:
Staff training: https://www.e-lfh.org.uk/programmes/data-security-awareness/
Cyber Security: https://digital.nhs.uk/cyber-security
Sign up to security bulletins: firstname.lastname@example.org