The national data opt-out policy was introduced on 25 May 2018, enabling patients to opt out from the use of their data for anything other than their individual care and treatment , for example research or planning purposes, in line with the recommendations of the National Data Guardian in her Review of Data Security, Consent and Opt-Outs.

By March 2020 all health and adult social care organisations are required to be compliant with the national data opt-out policy, where they are using confidential patient information for purposes beyond an individual’s care and treatment. This information standard provides a set of requirements to ensure that all health and adult social care organisations in England can comply with the National data opt-out policy.

This information standard is published under section 250 of the Health and Social Care Act 2012. An Information Standards Notice (see below) provides an overview of scope and implementation timescales, and the other documents provide further detail for those who have to implement the information standard.

March 2020: Update:  NHSX and NHS Digital have made a decision to extend the compliance deadline for the national data opt-out for six months up to 30 September 2020, at which point the position will be reviewed. Read the full statement in a joint letter from the two organisations.