The Data Security and Protection Toolkit (DSPT)
The DPO Centre can assist your organisation to complete the self-assessment process to meet the required standards set by the National Health Service Data Security and Protection Toolkit (DSPT).
What is the DSPT?
The Data Security and Protection Toolkit (DSPT) is an online self-assessment tool that organisations can complete to measure their performance against the National Data Guardian’s ten data security standards. Any organisation accessing NHS patient data is required to complete the DSPT on an annual basis and therefore demonstrate an acceptable level of compliance on an ongoing basis.
Whilst naturally applying to NHS organisations, such as Trusts and Clinical Commissioning Groups (CCGs), it also applies to many other categories of organisations across the public and private sector. Completing the DSPT is a contractual condition when working with the NHS and where you process or access NHS data.
The Toolkit provides assurance that organisations are processing personal data responsibly and practicing good data security. It is essential for all organisations to complete their submissions prior to the 31st of March each year. Depending on which (if any) data security/protection framework your organisation already employs, fulfilling the required assertions and evidence items can be resource intensive. It is therefore advisable to start reviewing your status against the criteria of the DSPT as soon as possible and therefore assist you to decide on the level of assistance you will require.
“We have received an extremely professional service from our outsourced DPO, and where needed, the rest of the DPO Centre team. The knowledge and advice provided is exceptional.”
National Healthcare Data Management Organisation
How the Service Works
To assist you in this process, we offer a solution which will:
- Assess and identify gaps in your current data security and protection practices
- Deliver practical advice and assistance on how to fulfil the ten data security standards
- Provide relevant documentation where necessary to enable you to meet the required standards
Depending on your specific needs, we can tailor your assessment to review the entirety of your data protection activities, or focus solely on the requirements of your DSPT submission.
Fill in your details below and we’ll get back to you as soon as possible