Looking after information

Data security and information governance to keep health and care information safe and share it securely.

How we look after information

We take our responsibility for looking after care information very seriously. We follow legal rules, guidance and practices known as Information governance for our data collections and IT Infrastructure Systems.

Read more about how NHS Digital makes sure your information is safe.

Data security and information governance

NHS Digital offers guidance on protecting data and handling information securely.

Our guidance is designed to help health and care organisations meet the standards required to handle care information.

  1. external

    UK Caldicott Guardian Council

    A Caldicott Guardian is a senior person responsible for protecting the confidentiality of people's health and care information and making sure it is used properly.

  2. external

    Data Security & Protection Toolkit (DS&P)

    The Data Security and Protection Toolkit is an online self-assessment tool that allows organisations to measure their performance against the National Data Guardian’s 10 data security standards. This used to be known as the IG Toolkit.

  3. internal

    Publication scheme

    NHS Digital (previously HSCIC) provides national information, data and IT systems for health and care services. We exist to help patients, clinicians, commissioners, analysts and researchers. Our goal is to improve health and social care in England by making better use of technology, data and information. The Health and Social Care Information Centre (HSCIC) was set up by the Department of Health in April 2013 and is an executive non-departmental public body. Trusted with over £1 billion of Department of Health funding, and an operating budget of £250 million, our team of 2,500 staff works to improve health and care services.

  4. internal

    Supporting open data and transparency

    Open data is data that can be used and shared by anyone, for any purpose. We make this data publicly available to improve transparency in health and care.

Your personal information choices

We collect information from the records health and social care providers keep about the care and treatment they give.

We can only provide access to identifiable information if it will be used to promote health or support improvements in the delivery of care services in England or the government decides it's an emergency or in the public interest.

Find out more about your choices