The DSPT retains the general principle that organisations should demonstrate that they can be trusted with the confidentiality and security of personal information. It also supports organisations to meet the requirements of new legislation including the likes of the General Data Protection Regulation (GDPR) and Network and Information Systems (NIS) Directive.

C&C is pleased to announce we have been assessed and our status is 19/20 Standards Met.

What does it really mean?

Single
Source

It is the single assurance vehicle for security standards compliance and support for the health and social care sector.

Relevant
Evidence

The types of evidence items requested from organisations are dependent on their scale, complexity and risk profile

Driving
Behaviour

Following advice from National Cyber Security Centre, evidence has been aimed at splitting out mandatory and best practice.

Data
Accuracy

The increase in quantitative evidence items and the reduction of descriptive evidence provides additional assurances.

Monitoring
Improvement

The information provides an ability to assess data security across sectors - supporting regulation and contract management.

nhs-digital-toolkit-e1569319178672

19/20
Standards Met