The Executive Team operates within an organisational risk management framework that includes:
• Corporate, quality and information governance risk registers which are reviewed at monthly committee meetings and reported to the Board • Weekly clinical service meetings where incident reporting, safeguarding incidents, complaints and positive feedback are discussed • Mandatory training standards which are reported monthly on the performance report, and this year included the introduction of the mandatory Autism Awareness Training in the form of the Oliver McGowan Mandatory Training on Learning Disability & Autism. This has implemented for all salaried and locum clinical staff • Data Protection, Equality, and Quality Impact Assessments which are routinely completed as part of project work up and implementation. These are brought to the attention of the Quality & Safety Committee for approval prior to the delivery of clinical services. 3.1 Information Governance & Data Protection - Data Security & Protection Toolkit (DSPT) NNPC measured its performance using the online self-assessment tool declaring compliance with the National Data Guardian’s 10 data security standards with the following outcomes:
The nominated Senior Information Risk Officer (SIRO) and the Caldicott Guardian for NNPC are Board members who, alongside the Data Protection Officer (DPO) gives Board assurances that we are meeting regulatory and statutory requirements for data protection. NNPC has a Subject Access Request (SAR) and Caldicott enquiry register, which had 14 entries in the 2023/24 period. All SAR requests are processed in accordance with the Data Protection Act 2018 and are supported in their processing by the DPO, where required.
North Norfolk Primary Care - Quality Account 2023/24
27 | Pa g e
Made with FlippingBook - Online magazine maker