We have detected that you are using Internet Explorer to visit this website. Internet Explorer is now being phased out by Microsoft. As a result, NHS Digital no longer supports any version of Internet Explorer for our web-based products, as it involves considerable extra effort and expense, which cannot be justified from public funds. Some features on this site will not work. You should use a modern browser such as Edge, Chrome, Firefox, or Safari. If you have difficulty installing or accessing a different browser, contact your IT support team.
Data Sharing Audits
We carry out independent audits and where necessary post audit reviews to check that our customers are meeting the obligations in their Data Sharing Framework Contracts and Data Sharing Agreements. This helps to ensure that organisations abide by the terms and conditions set by NHS Digital and data is kept safe and secure.
Page contents
To assist the data recipient with the audit process NHS Digital has produced an Audit Guide and an Action Plan template.
Audits conducted between October 2016 and December 2017 were against Version 1 of the Audit Guide.
Audits conducted between January 2018 and 26 July 2019 were against Version 2 of the Audit Guide.
Audits conducted from 29 July 2019 were against Version 3 of the Audit Guide.
In November 2020, the Audit Team started to conduct audits remotely against a new Remote Audit Guide.
Each audit and post audit review carried out results in the publication of a formal audit report. From April 2016, audit reports are being published on monthly basis and are scheduled to appear every third Thursday. Note the style of the audit report varies according to version of the Audit Guide the audit was conducted against.
March 2021
February 2021
December 2020
September 2020
June 2020
May 2020
March 2020
January 2020
December 2019
November 2019
Data Sharing Agreement Audit – Royal National Orthopaedic Hospital NHS Trust
Data Sharing Agreement Audit – Newcastle University
Data Sharing Agreement Audit – University of Sheffield
Data Sharing Post Audit Review – Oliver Wyman
Data Sharing Post Audit Review – Neil Wilson Associates
Data Sharing Post Audit Review – Wakefield County Council
October 2019
September 2019
August 2019
July 2019
June 2019
May 2019
April 2019
March 2019
Data Sharing Agreement Audit - CHKS
Data Sharing Agreement Audit - Department for Transport
Data Sharing Post Audit Review - University of Liverpool
Data Sharing Post Audit Review - Royal Liverpool and Broadgreen University Hospitals NHS Trust
Data Sharing Post Audit Review - Staffordshire County Council
Data Sharing Post Audit Review - Oxford AHSN
February 2019
January 2019
Data Sharing Agreement Audit - IQVIA
Data Sharing Agreement Audit - LSHTM
Data Sharing Post Audit Review - Cambridgeshire County Council
Data Sharing Post Audit Review - Northumberland NHS Trust
Data Sharing Post Audit Review - Fareham & Gosport CCG
Data Sharing Post Audit Review - SE Hampshire CCG
Data Sharing Post Audit Review – Gateshead Metropolitan Brough Council
November 2018
Data Sharing Agreement Audit - Oliver Wyman Limited
Data Sharing Agreement Audit - Neil Wilson Associates LLP
Data Sharing Agreement Audit - Rod Gibson Associates Limited
Data Sharing Agreement Audit - HQIP
Data Sharing Agreement Audit - Wakefield Council
Data Sharing Post Audit Review - London Brough of Enfield
October 2018
September 2018
August 2018
July 2018
April 2018
February 2018
Data Sharing Agreement Audit - Northumberland, Tyne and Wear NHS Foundation Trust
Data Sharing Post Audit Review - NEW Devon CCG
Data Sharing Post Audit Review - Leeds Teaching Hospitals Trust
Data Sharing Post Audit Review - Competition and Markets Authority
Data Sharing Post Audit Review - University of Manchester - February 2018
January 2018
November 2017
October 2017
Data Sharing Agreement Audit - Arden GEM
Data Sharing Agreement Audit - Cheshire West Council
Data Sharing Agreement Audit - Derby NHS FT
Data Sharing Agreement Audit - Moorfields Eye Hospital
Data Sharing Agreement Audit - Pathway Communications
Data Sharing Post Audit Review - CRAB Clinical Informatics
Data Sharing Post Audit Review - Royal Liverpool
August 2017
Data Sharing Agreement Audit - University of Manchester - August 2017
Data Sharing Agreement Audit - Nottinghamshire County Council
Data Sharing Agreement Audit - South, Central and West CSU
Data Sharing Agreement Audit - Portsmouth CCG
Data Sharing Agreement Audit - Fareham and Gosport CCG
Data Sharing Agreement Audit - South Eastern Hampshire CCG
Data Sharing Agreement Audit - University of York
Data Sharing Post Audit Review - South Gloucester CCG
Data Sharing Post Audit Review - Bristol CCG
Data Sharing Post Audit Review - Kings College, London
Data Sharing Post Audit Review - North Somerset CCG
Data Sharing Post Audit Review - Birmingham City Council
Data Sharing Post Audit Review - Lightfoot Solutions - August 2017
July 2017
Data Sharing Agreement Audit - Kent County Council
Data Sharing Agreement Audit - Leeds Teaching Hospitals
Data Sharing Agreement Audit - University College London
Data Sharing Agreement Audit - Staffordshire County Council
Data Sharing Post Audit Review - University of Leicester
Data Sharing Post Audit Review - Lincolnshire County Council
April 2017
March 2017
February 2017
December 2016
November 2016
October 2016
September 2016
August 2016
July 2016
May 2016
Data Sharing Agreement Audit - East and North Hertfordshire
Data Sharing Agreement Audit - University of Leicester
Data Sharing Agreement Audit - BUPA Healthcare Services Limited
Data Sharing Agreement Audit - Methods
Data Sharing Agreement Audit - Royal Liverpool and Broadgreen University Hospitals NHS Trust
April 2016
Data Sharing Agreement Audit - Derby Hospital NHS Trust
Data Sharing Agreement Audit - Leeds City Council
Data Sharing Agreement Audit - Clarity Informatics
Data Sharing Agreement Audit - Kings College London
Data Sharing Agreement Audit - University of Manchester - April 2016
Data Sharing Agreement Audit - Cegedim Strategic Medical Research Ltd
Data Sharing Agreement Audit - Aintree University Hospitals
Data Sharing Agreement Audit - AQuA
February 2016
November 2015
July 2015
January 2015
We published the first set of reports in January 2015.
Audit Report - Methods Consulting
Audit Report - PA Consulting Services
Audit Report - University Hospitals Birmingham
We are using the information from these audits to improve the processes we use to keep data safe.
Last edited: 9 April 2021 6:46 am