This page provides an overview of the Data Security and Protection Toolkit.
If you have a support query, please contact us at https://www.dsptoolkit.nhs.uk/Home/Contact
'About the Data Security and Protection Toolkit' provides an overview of what the toolkit is, who should complete the toolkit, and why. The 'Data Security Meta Standards' document gives the bigger picture of where the standards fit in. 'Key roles and the DPO' provides a guide for social care providers to the organisational roles involved in completing the Data Security and Protection Toolkit.
This outlines the entry level Data Security and Protection Toolkit evidence items that organisations are required to provide to be given access to NHSmail.
Guidance for DSPT independent assessment or audit providers, including auditors. The guidance is designed to be used by DSPT independent assessment providers, including internal auditors, when assessing DSPT submissions.
Definition of Data Security and Protection Toolkit organisation types 2019/2020.
These guides take you through the definitions used in the standards, what the standards are asking of you, suggestions and examples of how this might be achieved, how this relates to common current practices, and useful resources.
This list of questions used in DSPT staff awareness evidence items can be used in local training materials or incorporated into local e-learning solutions.
Data Security and Protection Toolkit action plans for Category 1 NHS Trusts, Category 2 ALBs, CCGs and CSUs, Category 3 Others and Category 4 GPs.
These guides for social care take you through the definitions used in the standards, what the standards are asking of you, suggestions and examples of how this might be achieved, how this relates to common current practises, and useful resources.
This page provides copies of historic guidance and training for reference purposes.
This page includes guidance carried over from the predecessor system, the 'Information Governance Toolkit'.
Overview of changes to the wording of evidence items for NHS Trusts, CCGs, CSUs and Arm's Length Bodies (Category 1 & 2 organisations) for the year ending 30 September 2020
Overview of changes to the wording of evidence items for category 3 organisations for the year ending 30 September 2020
Overview of changes to the wording of evidence items for GP practices (category 4 organisations) for the year ending 30 September 2020
Guidance on reporting an incident for GDPR and NIS.
Responses to frequently asked questions regarding the Data Security and Protection Toolkit.
e-Learning – data security awareness – level one (v3.0)
