Skip Navigation

Data security and information governance

Our guidance is designed to help health and care organisations meet the standards required to handle care information.

Data and cyber security: protecting information and data in health and care

Our Data Security Centre supports health and care to keep patient information and computer systems safe

Information Governance Alliance (IGA)

The authoritative source of advice and guidance about the rules on using and sharing information in health and care.

Codes of practice for handling information in health and care

What health and care organisations must do to look after information properly, covering confidentiality, information security management and NHS records management.

IG Statement of Compliance

IG requirements for organisations accessing NHS digital services including N3.

IG Toolkit

IG standards and guidance for NHS and partner organisations.

National Data Guardian (NDG)

Dame Fiona Caldicott independently advises on the use of confidential health and care information.

UK Caldicott Guardian Council

A Caldicott Guardian is a senior person responsible for protecting the confidentiality of people's health and care information and making sure it is used properly.

Lists and registers

See links to our lists and registers of information, including registers of approved data releases.


The transparency agenda is a pan-government initiative, in which healthcare data figures prominently.

NHS and social care data: off-shoring and the use of public cloud services

National guidance for health and care organisations who want to use cloud services or data offshoring to store patient information.

Have a question? Call us on 0300 303 5678 or contact

Tell us what you think of the new website beta.

We use cookies to provide you with a better service. Carry on browsing if you're happy with this, or find out how to manage cookies. Find out more