Data Sharing Audits

Summary

We carry out independent audits to check that our customers are meeting their obligations towards data security.

We carry out independent audits and where necessary post audit reviews to check that our customers are meeting the obligations in their Data Sharing Framework Contracts and Data Sharing Agreements. This helps to ensure that organisations abide by the terms and conditions set by NHS Digital and data is kept safe and secure.

To assist the data recipient with the audit process NHS Digital has produced an Audit Guide and an Action Plan template. Audits undertaken between October 2016 and December 2017 were against Version 1 of the Audit Guide. Audits conducted from 1 January 2018 will be against Version 2 of the Audit Guide.

Each audit and post audit review carried out results in the publication of a formal audit report. From April 2016, audit reports are being published on monthly basis and are scheduled to appear every third Thursday. Note the style of the audit report varies according to version of the Audit Guide the audit was conducted against.

April 2018

February 2018

January 2018

November 2017

October 2017

August 2017

July 2017

April 2017

March 2017

February 2017

January 2017

December 2016

November 2016

October 2016

September 2016

August 2016

July 2016

May 2016

April 2016

February 2016

November 2015

July 2015

January 2015

We published the first set of reports in January 2015.

Audit Report - Methods Consulting

Audit Report - NHiS

Audit Report - PA Consulting Services

Audit Report - University Hospitals Birmingham

We are using the information from these audits to improve the processes we use to keep data safe.