What is the Data Security and Protection Toolkit?
The Data Security and Protection Toolkit is an online self-assessment tool that must be completed annually by all organisations that process health and care data. It measures their performance against the National Data Guardian’s ten data security standards. The DSPT came into force in April 2018, and it is the successor framework to the IG Toolkit.
A number of updates have been made ahead of the 2020/21 submission, including updating most of the mandatory evidence item wording. The deadline for submitting the DSPT is the 30th June 2021this year.
Who is the DSPT for?
The DSPT must be completed by NHS bodies as well as other organisations that process health and care data. This includes many private organisations such as online pharmacies and private dentists. The results are shared with commissioners and partners like NHS England and CCGs. Consumers can also check the status of organisations, but won’t be able to access the contents of an organisation’s DSPT.
You have to meet these standards every year to get your certificate, and we have just been told that we have passed the standards met and have our certificate!
DATA PROTECTION REGISTRATION CERTIFICATE.
What is the purpose of certification?
Certification is a way of demonstrating that your processing of personal data complies with the UK GDPR requirements, in line with the accountability principle. Certification can help demonstrate data protection in a practical way to businesses, individuals and regulators. Your customers can use certification as a means to quickly assess the level of data protection of your particular product, process or service, which provides transparency both for data subjects and in business to business relationships.
Comments