1 / 16

Efficient Information Governance Manager Offering GDPR Training and Support

Experienced Information Governance Manager providing GDPR training, support, and guidance. Expertise includes DPO services, data breach reporting, and compliance assurance. Offering training on GDPR, SARs, DSPT, and customizable workshops. Collaborating with CCG projects for data protection. Contact for factsheets, tailored training sessions, and upcoming compliance workshops.

ottoh
Download Presentation

Efficient Information Governance Manager Offering GDPR Training and Support

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Jodie StutelyPrimary Care Information Governance Manager • Previously worked as the IG Manager at Colchester Hospital • By law you need to get your DPO to be signing off new processes/systems (and therefore your DPIAs), reporting data breaches etc. • Advisory role – templates, training, support and guidance • Link into projects coming from the CCG • Working with care homes to complete the DSPT to get nhs.net = no more faxing! • Can provide extra training on GDPR/ SARs/ DSPT • Happy to visit any practice, or attend PM meetings

  2. Projects I am working with each of the projects below to ensure compliance with data protection: • Population Health • Health Intelligence – Diabetic Eye Screening • Social Prescribing • Care Home Local Enhanced Service • Diabetes Complete/Eclipse • Dementia – Meds Managament “at risk” register • High Intensity User Group • Julian project • MyCOPD • ACE Health Checks • Biobank

  3. Training I am happy to provide training sessions on any of the following: • Subject Access Requests • Data Security and Protection Toolkit • Data Protection Act / GDPR • Data Protection for Medical Secretaries • Data Protection for Practice Managers • Freedom of Information Let me know if there is any other related training you would like…

  4. Factsheets I have created the following factsheets: • Access to Systems • Caldicott Guardian • Clear Desk Policy • Confidential Waste • Consent • Data Protection by Design and Default • Data Protection Impact Assessments • Data Protection Officers • Dementia – Meds Management • Due diligence questionnaire for software suppliers • Faxes • How to password protect a document • Location and Environment • Passwords • Physical Security • Types of information • USB • What to include in a Data Protection policy • What to include in a spot check Email me to make a request

  5. 2019 Plan • Future plan for next version of DSPT • Multiple dates and bi-monthly workshops • Broken down into bite size sections • Will also be planning a Subject Access Request training session • Organising Caldicott Guardian and SIRO training • Continue adding documents to East CCG website GP members only area • Attending GP events at Trinity Park • Regular Articles/messages in weekly Inbox newsletter

  6. Data Security and Protection Toolkit Deadline: 31st March 2019

  7. Information Governance Toolkit vs. Data Security and Protection Toolkit • Developed in response to the National Data Guardian review – which was the ‘Review of Data Security, Consent and Opt-Outs’ published in July 2016 – which is why is it now split into the 10 data security standards – the online guidance for the Toolkit is split into these 10 standards • Also takes into account GDPR and new cyber security threats • Terminology • Information Governance Toolkit – to Data Security and Protection Toolkit • “requirements” are now called “assertions” • Text options/tick boxes rather than all to upload documents – don’t forget that you must still have this information collated in a folder ready for any CQC visit – as the CQC well led inspections will include data security • Hadn’t changed in a long time - More intuitive/newer system • Less duplication which means less “assertions” – 52 assertions – they are trying to give you more time to implement the standards than is spent on the toolkit itself • Instead of meeting levels 1, 2 or 3 – now is just compliance with the mandatory evidence items. Option to see mandatory only assertions • Be aware that it is possible that the non-mandatory questions may be mandatory next year – so have a look at them and have a think about how you could incorporate these into your work • Deadline is the same 31st March to submit

  8. My Guidance Documents that were linked in the newsletter…

  9. Spreadsheet

  10. Quick Checklist

  11. My Guidance Documents that were linked in the newsletter…

  12. Example from Data Security Standard 1Breakdown

  13. IT related assertions

More Related