Guidance

Information Security Management: NHS Code of Practice

Sets out standards for the management of information in NHS organisations.

• From: Department of Health and Social Care
• Published: 20 April 2007

Applies to England

Documents

Information Security Management: NHS Code of Practice

PDF, 340 KB, 32 pages

Checklist for Reporting, Managing and Investigating Information Governance Serious Untoward Incidents

PDF, 159 KB, 16 pages

This file may not be suitable for users of assistive technology.

Request an accessible format.

If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email publications@dhsc.gov.uk. Please tell us what format you need. It will help us if you say what assistive technology you use.

Details

This code of practice is intended to help NHS organisations manage digital and hard copy information effectively, and to comply with legal requirements and best practice.

The code of practice covers:

• digital or hard copy patient health records
• digital or hard copy administrative information
• digital or printed X-rays, photographs, slides and images
• digital media including data tapes, CDs, DVDs, USB disk drives, removable memory sticks
• computerised records, including those that are processed in networked, mobile or standalone systems
• email, text and other message types

Published 20 April 2007