Skip navigation

National Data Security Standards for Health and Social Care: Information Governance Summit 2017

The National Information Governance Summit 2017 focuses on monitoring adherence to the 10 National Standards for Data Security which were proposed by the National Data Guardian, Dame Fiona Caldicott in July 2016. Through national updates, extended in-depth sessions and practical case studies the conference will provide you with a guide to ensuring compliance with the new standards in practice.

Speakers and Presentations

Information Governance: An update: Updates from the Information Governance Alliance and to the Information Governance Toolkit

Catherine O’Keeffe, Director of Information Governance & Standards Assurance Clinical Services Portfolio, NHS Digital

This session is based on Implementing Recommendation 2: A redesigned IG Toolkit should embed the new standards, identify exemplar organisations to enable peer support and cascade lessons learned. Leaders should use the IG Toolkit to engage staff and build professional capability, with support from national workforce organisations and professional bodies

  • IGA update

Catherine O’Keeffe’s Full Presentation Click Here

In her presentation Catherine Stated: 

"The IG toolkit has been in existence since 20013, it has grown so much"

"Why are we changing it? Patients, boards, everybody looks at us to protect their data"

"We need to support digital transformation"

"Our level 3 training will be aimed at board level"

"IG & Cyber security needs to be incorporated, you have to work together"

"We can’t do anymore about listening to feedback on this – we are listening to everyone"

Catherine O’Keeffe’s Abstract:

People trust the NHS to protect information and IG and Data Security must support digital transformation otherwise the risk of breaches increase and trust will be lost. Dame Fiona Caldicott in her latest Review of Data Security, Consent & Opt Outs points to Leadership as being key and organisations need to address People, Process and Technology by embedding 10 Data Security Standards into their business processes to gain Public Trust and protect patient data.

NHS Digital has listened to the needs of its customers in the use of the IG Toolkit to provide assurance to their organisation and are in the process of re-designing its current product to better serve the needs of a modern-day NHS in not only meeting Information Governance requirement, but embedding Data Security into the heart of its processes.

We aim to set out to update the audience on the key design principles of the new product and update on the progress so far into the new products development. There will also be further information on how the audience can become involved in providing feedback into this design including becoming a tester to truly ensure the new product will have a positive influence on providing organisation assurance in IG & Data Standards in the long term.

An update will also be provided into the current work of the Information Governance Alliance inc plans for this upcoming operational year.

Catherine O’Keeffe’s Biography:

Catherine started her NHS career as a Radiographer in Oxford, London & Liverpool. Through her interest in IT moved into the Information Technology space in 2006, leaving Liverpool Women’s NHS Foundation Trust in December 2016, where she was previously Deputy Chief Information Officer to take up the role of Director of Information Governance and Standards Assurance in NHS Digital. Catherine has a Master’s Degree in Information Security and IT Management and has a passion for all aspects of data security and compliance believing that transformation in these areas will allow patient data to be better protected, and that all users should have embedded into their working practices that protection of data is at the heart of clinical and operational delivery.

The National Data Security Standards: Monitoring Adherence

Barry Moult, Head of Information Governance & Health Records, Colchester Hospital University NHS Foundation Trust & Chair, East of England Information Governance Forum

  • how to we monitor adherence against the standards
  • assurance and audit
  • our experiences in Colchester

Barry Moult’s Full Presentation Click Here 

In his presentation Barry stated: 

"Whatever we do patients must come first"

"The good old toolkit – it is a great driver for change’, ‘Do I want it to go – No’, ‘Do I want changes to be made – yes"

"The toolkit must reflect the data security standards"

"Data quality is vital"

"The focus has to be on quality – that quality will come through networking – if we can share good practice together"

"Risk – there is always a risk with sharing information – but we have to manage those risks – with policies and training etc"

Barry Moult’s Biography:

Barry is originally from Stoke on Trent and started nurse training in the RAF in the early 1970s, working in Occupational Health through to the 1980s. He moved to Welfare Work for MoD in the later 1980s, and moved into IT Training for a private company and for HMP Cardiff. In 1997 Barry completed a return to nurse practice, working in A&E, and continued to work as a Nurse in A&E and senior clinical duties at nights and weekends. In 2000 he became the Data Protection Officer, and then the Information Governance Manager at West Suffolk Hospital.  Barry founded and has Chaired the Eastern Region IG Forum since 2003. He is a proactive locally, regionally and nationally in IG development. Barry prefers face-to-face training to e-learning, and is an advocate of IG Peer review. He moved from West Suffolk Hospital to Colchester Hospital in February 2014 as Head of IG & Health Records. Barry is married with a son and daughter, both working for the NHS.

The National Data Security Standards: Assuring Leadership: Developing the role of the SIRO, IG Lead and Caldicott Guardian

Christopher Fincken, Independent Member, UK Caldicott Guardian Council, (Chairman 2012-2017)

  • recommendation 1: ensuring the leadership of every organisation demonstrates clear ownership and responsibility for data security, just as it does for clinical and financial management and accountability
  • implementing the leadership obligations outlined in the national review
  • developing the role of the board, the SIRO, the IG lead and the Caldicott Guardian
  • how do we ensure all staff complete mandatory data security training and pass a mandatory test
  • moving forward with the recommendations in practice: interactive discussion

Christopher Fincken's Full Presentation Click Here 

Christopher Fincken’s Biography:

Christopher Fincken is an independent member of the UK Council of Caldicott Guardians (UKCCG) and was its Chairman from 2012-2017, working closely with the office of the National Data Guardian. He is currently involved in several collaborative initiatives, including working with the Information Governance Alliance, the Centre of Excellence for Information Sharing, The Home Office and the Police.

He was a Caldicott Guardian for over ten years in an Acute NHS Hospital Trust serving a cathedral city and large rural population before volunteering as a Caldicott Guardian for Marie Curie, the leading UK charity which provides home nursing care and hospice care for people with a terminal illness.

He was also an independent member of the National Information Governance Committee of the Care Quality Commission (NIGC - CQC) until it’s dissolution in 2015.

He has represented UKCCG at numerous events including those recently hosted by the Kings Fund and the Welcome Trust . He was a member of the NHS Protect Strategy Implementation Group and was a former member of the NHS Commissioning Board’s IG Professional Leadership Group and its successor the Information Governance Forum. He was also Chair of the Honest Broker PIA Steering Group and a member of the cross government data sharing workshop addressing barriers to information sharing in relation to gang violence. He has a particular interest in Multi Agency Risk Assessment Conferences on Domestic Violence (MARAC’s) and Multi Agency Public Protection Arrangements (MAPPA) and is the author of “Striking the Balance”, guidance for information sharing in relation to Domestic Violence published by the Department of Health. 

He combines a deep knowledge of the challenges that real life presents with a passion to understand and unravel problems to try and find the best solution. He writes, lectures, and provides innovative, memorable and challenging training all based on practical experience! In addition he provides advice and guidance to an extensive range of organisations both local and national on Caldicott Guardian, confidentiality, information sharing, information governance and data protection.

Future events of interest:

Caldicott Guardian Training Course 2017

London, Exeter and Manchester

Caldicott Guardian Leadership Summit 2017
Wednesday 18 October 2017 
The Studio Conference Centre, Birmingham

National PROMs Summit 2017
Monday 11 December 2017 
De Vere West One Conference Centre, London


26 June 2017

 PreviousNext 

    Partner Organisations

    The Tavistock and Portman NHS Foundation TrustInPracticeClinical Audit Support CentrePlayoutJust For Nurses
    GGI (Good Governance Institute) accredited conferences CPD Member ASGBI (Association of Surgeons of Great Britain and Ireland) professional partner BADS (British Association of Day Surgery) accredited conferences