Cookies on this website
We use cookies to ensure that we give you the best experience on our website. If you click 'Continue' we'll assume that you are happy to receive all cookies and you won't see this message again. Click 'Find out more' for information on how to change your cookie settings.
Skip to main content

Flummoxed by FOI's? Feeling some tension about Records Retention? Intimidated about Incident Reporting? You've come to the right place. This page is a helpful guide to all things Information Governance related. Refresher training sessions will be coming soon, but meanwhile please take a moment to read some of the handy overviews listed below. They're really quite helpful and should set you straight on terminology, legal obligations and best practice.

Information Governance

The DSP Toolkit (formerly the Information Governance Toolkit) is an online self-assessment tool that allows organisations to measure their performance against the National Data Guardian’s 10 data security standards.

All organisations that have access to NHS patient data and systems must use this toolkit to provide assurance that they are practising good data security and that personal information is handled correctly.

Submission of incident reports, completion of asset registers, compliance with retention schedules...just about everything on this page is required to evidence that the department is processing data securely and legally. 

Ensuring staff are fully informed, confident and comfortable with Information Governance is essential for our ability to continue using data for health research and maintaining a strong reputation for data security.

It is everyone's responsibility to comply with the GDPR, Data Protection Act 2018 and also University policy regarding Information Governance. 

Further information on the DSP toolkit can be found here


Information Governance

Are you all up to date with your IG training? It is essential for our NHS Data Security and Protection Toolkit that we look to achieve 95% compliance for IG training across the department, so your co-operation is very much appreciated!

You can find the University Information Security module via the online learning page and make sure you're familiar with processing data securely and legally.

Also the department's Prisms IG webpage allows you to review and confirm you have read all the IG policies. 

Meanwhile if you have any questions or problems regarding Information Governance, drop me a line at


Information Governance

One of the ways our department ensures staff  are confident and familiar with data protection is through the conducting of Spot Check Audits. This process isn't meant to scare you! It's simply a way that we can check that data is being processed securely, staff have had an opportunity to review our policies, and we're meeting our obligations under the GDPR (General Data Protection Regulation).

You will be told in advance that a spot check audit is taking place.

The spot check audit form can be found here.