DCB3058 Compliance with National Data Opt-outs

The national data opt-out policy was introduced on 25 May 2018, enabling patients to opt out from the use of their data for anything other than their individual care and treatment , for example research or planning purposes, in line with the recommendations of the National Data Guardian in her Review of Data Security, Consent and Opt-Outs.

By September 2021 all health and adult social care organisations are required to be compliant with the national data opt-out policy, where they are using confidential patient information for purposes beyond an individual’s care and treatment. This information standard provides a set of requirements to ensure that all health and adult social care organisations in England can comply with the National data opt-out policy.

This information standard is published under section 250 of the Health and Social Care Act 2012. An Information Standards Notice (see below) provides an overview of scope and implementation timescales, and the other documents provide further detail for those who have to implement the information standard.

April 2021 update:  NHSX and NHS Digital have made a decision to further extend the compliance deadline for the national data opt-out to 30 September 2021. The deadline has been extended to enable health and care organisations to focus their resources on the coronavirus (COVID-19) outbreak. Read the letter sent from NHS Digital and NHSX to health and care.