Skip to main content

DCB0086: Data Security and Protection Toolkit

The Data Security and Protection (DSP) Toolkit is an online tool that enables relevant organisations to measure their performance against the data security and information governance requirements mandated by the Department of Health and Social Care, notably the 10 data security standards set by the National Data Guardian.

About this information standard

The Data Security and Protection (DSP) Toolkit is an online tool that enables relevant organisations to measure their performance against the data security and information governance requirements mandated by the Department of Health and Social Care (DHSC), notably the 10 data security standards set out by the National Data Guardian in the 2016 Review of data security, consent and opt-outs.

All organisations that have access to NHS patient data and systems must use this Toolkit to provide assurance that they are practising good data security and that personal information is handled correctly. Such organisations are required to carry out self-assessments of their compliance against the assertions and evidence contained within the DSP Toolkit.

This information standard is published under section 250 of the Health and Social Care Act 2012. An Information Standards Notice (see below) provides an overview of scope and implementation timescales, and the Specification and Implementation Documents provide further detail for those who have to implement the information standard.

Update 12 February 2021: Following publication of Version 3.1 in December 2020, an error was identified in the the Change Specification and Information Standards Notice (ISN), in relation to the description of the changes. This has now been corrected, and the correction has been signposted with a footnote in the updated documents, which are are available below (as 'Version 2.0'). 

Release for 2020-21 (10 December 2020 to 30 June 2021)

Release date 10 December 2020
Release number Amd 71/2020
Release title Version 3.1
Stage Implementation (from 10 December 2020)
Key documents

Further information

 Full details and help information is available on the NHS Digital's Data Security and Protection Toolkit website.

Note that Version 3.0 of the DSP Toolkit (Amd 89/2019) was released in April 2020 but, due to the extension to the conformance date of Version 2.0 of the DSP Toolkit, Version 3.0 was not implemented. Version 3.0 is now withdrawn as it is wholly superseded by Version 3.1 (above). 

Documents for Version 3.0 have been removed from this page but are available on request from standards.assurance@nhs.net 

Release for 2019-20 (1 April 2019 to 30 September 2020)

Release for 2018-19 (1 April 2018 to 31 March 2019)

Last edited: 12 February 2021 3:58 pm