Information Governance and Risk Management

Information Governance

Fair Processing Notice
This fair processing notice sets out to you what information we collect and how we use it.
(Updated December 2015 and awaiting final approval.)

Guidance for the Inclusion of Information Governance Requirements within Third Party Contracts
This policy aims to provide effective Information Governance in relation to both clinical and non-clinical contracts taken out with third party contractors by any procuring department across the CCG.

Information Governance Handbook (July 2018)
This handbook is designed to provide a central place for all staff to access the Information Governance Procedures they are required to work to in order to ensure compliance with Information Governance legislation and national and local guidance.

Information Governance Data Security and Protection Policies (June 2018)
This overarching Data Security and Protection or Information Governance policy provides an overview of the organisation’s approach to information governance and includes data protection and other related information governance policies; and details about the roles and management responsible for data security and protection in the organisation.

Information Governance Staff Code of Conduct July 2018
This code of conduct sets out clear guidance and the Information Governance (IG) standards expected of staff working for NHS Shropshire CCG.

Information Quality Assurance Policy
Please note this is a PCT policy, for interim use until a CCG policy has been ratified.

Leaflet: Collecting information to improve the quality of care for people with learning disabilties and/or autism 
This leaflet explains how NHS England collects information to help improve NHS care and treatment for people with learning disabilities and autism. The collection of this information is called ‘Assuring Transformation Data’ and it helps NHS England check that people are getting the right care, in the right place.

NHS Care Record Guarantee
In the National Health Service in England, we aim to provide you with the highest quality of healthcare. We also aim to gain evidence that will improve health and care through research.

Standard Operating Procedure for the Management of Subject Access Requests
This procedure applies to Shropshire CCG for records for which they are the Data Controller. The CCG must ensure there is a procedure in place to respond to requests made under the Data Protection Act 1998 and Access to Health Records Act 1990.



Risk Management

The Risk Management zip file contains the following documents:


Risk Management Policy and Strategy
This document sets out Shropshire Clinical Commissioning Group’s commitment to ensuring that it has in place structures, in line with its key principles, that will effectively manage risks of all kinds.


Incident Reporting Policy 
Please note this is a PCT policy, for interim use until a CCG policy has been ratified.


Communicating Patient Safety Incidents with Carers Policy
Please note this is a PCT policy, for interim use until a CCG policy has been ratified.


Risk Assessment Policy
Please note this is a PCT policy, for interim use until a CCG policy has been ratified.