Information Governance Policy
5th January 2017
Information is a vital asset, both in terms of the clinical management of individual patients and the efficient management of services and resources. It plays a key part in clinical governance, service planning and performance management. It is therefore of paramount importance that information is efficiently managed, and that appropriate policies, procedures, management accountability and structures provide a robust governance framework for information management.
2. Purpose of the policy
This Information Governance policy provides an overview of the practice’s approach to information governance; a guide to the procedures in use; and details about the IG management structures within the dental practice.
3. The practice's approach to Information Governance
Trinity Dental undertakes to implement information governance effectively and will ensure the following:
- Information will be protected against unauthorised access;
- Confidentiality of information will be assured;
- Integrity of information will be maintained;
- Information will be supported by the highest quality data;
- Regulatory and legislative requirements will be met;
- Business continuity plans will be produced, maintained and tested;
- Information governance training will be available to all staff as necessary to their role;
- All breaches of confidentiality and information security, actual or suspected, will be reported and investigated.
4. Procedures in use in the practice
This Information Governance policy is underpinned by the following procedures:
- Records management procedure that set outs how patient dental records will be created, used, stored and disposed of;
- Access control procedure that sets out procedures for the management of access to computer-based information systems;
- Information handling procedure that sets out procedures around the transfer of confidential information;
- Incident management procedure that sets out the procedures for managing and reporting information incidents;
- Business continuity plan that sets out the procedures in the event of a security failure or disaster affecting computer systems;
5. Staff guidance in use in the practice
Staff compliance with the procedures is supported by the following guidance material:
6. Responsibilities and accountabilities
The designated Information Governance lead for the practice is Harvey Cohen.
The key responsibilities of the lead are:
The day to day responsibilities for providing guidance to staff will be undertaken by Harvey Cohen.
The owner of the practice is Harvey Cohen who is responsible for ensuring that sufficient resources are provided to support the effective implementation of IG in order to ensure compliance with the law, professional codes of conduct and the NHS information governance assurance framework.
All staff, whether permanent, temporary or contracted, and contractors are responsible for ensuring that they are aware of and comply with the requirements of this policy and the procedures and guidelines produced to support it.
This policy has been approved by the undersigned and will be reviewed on an annual basis.
|Date approved||5th January 2017|