NHS Digital offers guidance on protecting data and handling information securely.
Our guidance is designed to help health and care organisations meet the standards required to handle care information.
Data security and information governance
Data and cyber security: protecting information and data in health and care
Our Data Security Centre supports health and care to keep patient information and computer systems safe.
Information Governance Alliance (IGA)
National independent group of care organisations promoting good IG.
UK Caldicott Guardian Council
A Caldicott Guardian is a senior person responsible for protecting the confidentiality of people's health and care information and making sure it is used properly.
National Data Guardian (NDG)
Dame Fiona Caldicott independently advises on the use of confidential health and care information.
Lists and registers
See links to our lists and registers of information, including registers of approved data releases.
Technology-specific information security and governance guidance (Good practice guidelines)
Documents providing advice on IT implementation and information governance.
Information Security
Safeguards and guidelines for protecting patient data.
Transparency
The transparency agenda is a pan-government initiative, in which healthcare data figures prominently.
IG Statement of Compliance
IG requirements for organisations accessing NHS digital services including N3.
Assuring information
We've put measures in place to assure that NHS Digital, our clients and suppliers all look after information well and in line with good practice and the law. These follow the rules and practices known as Information Governance (IG).
Confidentiality
Standards of practice for health record confidentiality.
Information Governance Alliance (IGA)
The authoritative source of advice and guidance about the rules on using and sharing information in health and care.
IG Toolkit
IG standards and guidance for NHS and partner organisations.
NHS and social care data: off-shoring and the use of public cloud services
National guidance for health and care organisations who want to use cloud services or data offshoring to store patient information.
Data Security and Protection Toolkit
An online self-assessment tool that all organisations must use if they have access to NHS patient data and systems.
Codes of practice for handling information in health and care
What health and care organisations must do to look after information properly, covering confidentiality, information security management and NHS records management.