We have years of experience in providing information assurance and information risk management services to all kinds of businesses. It does not matter whether you run a small start-up company or a large corporation, we will ensure your assets are protected and maintained efficiently. Our aim is to find the best form of protection for your business and provide you with the means to manage risks effectively in order to minimise financial costs and prevent damage to your reputation.
A cookie is a small file which asks permission to be placed on your computers hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.
We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.
Overall, cookies help us provide you with a better website by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.
You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.
Advice and Assurance services around compliance and submission of the Data Security and Protection Toolkit (DSP)
Information security analysis and implementation guidance to help organisations conform to the HSCN Consumer
obligations around ownership and responsibility for the HSCN Connection Agreement. These include incident
reporting, cyber and information security, network monitoring compliance, securing information, access controls as
well as information governance.
Advice and Assurance services around compliance, include annual submissions of the NHS Data Security and Protection Toolkit (DSP) as the standard for cyber and data security for all organisations within the public and private sector infrastructure that have access to NHS patient data and systems. The DSP requirements for healthcare organisations are constructed around compliance with the National Data Guardian’s 10 data security standards.
The DSP Toolkit requires organisations to demonstrate that they are implementing the ten data security standards recommended by the National Data Guardian, as well as complying with the requirements of the GDPR (General Data Protection Regulation) and NISD Cyber Assessment Framework (CAF).
The NHS Health Social Care Network (HSCN) is a private network and is designed as a reliable business resource to carry information, which is only available to certain healthcare organisations. This is very different from a 'secure' network, in that the HSCN doesn't provide security to prevent loss, tampering, authenticity or inappropriate usage of the information it carries or the systems or services available through it. Patient or Service User data being transmitted across the HSCN must use transport methods of encryption. It also means that if you provide systems or services over the HSCN, it's the consumers responsibility to secure them and to make decisions about who can access those systems or services.
The Connection Agreement replaces the NHS N3 Information Governance Statement of Compliance (IGSoC). In doing this, the arrangements for being able to use the HSCN are separated from those relating to accessing data or systems available on the HSCN. Consumer obligations of the HSCN Connection Agreement include factors of: These obligations are designed to help maintain the availability of the HSCN whilst improving the overall cyber security position of HSCN Consumers.
The Connection Agreement replaces the NHS N3 Information Governance Statement of Compliance (IGSoC). In doing this, the arrangements for being able to use the HSCN are separated from those relating to accessing data or systems available on the HSCN.
Consumer obligations of the HSCN Connection Agreement include factors of:
These obligations are designed to help maintain the availability of the HSCN whilst improving the overall cyber security position of HSCN Consumers.