The Data Security and Protection Toolkit (DSPT) is the way in which the Department of Health & Social Care seeks assurance that Patient Information is managed and treated securely.  An organisation is required to have a toolkit in the following instances.

1. Access to confidential patient information without consent (Section 251)
2. Obtaining data from NHS Digital through Data Access Request Service (DARS)
3. Obtaining data from an organisation that has data covered by S251 or data that originates from NHS Digital
4. NHS and non-NHS organisations may also require a toolkit as part of a Data Sharing Contract or when you are carrying out work on behalf of an NHS organisation eg Clinical Trials or performing testing

Individual research projects which meet one or more of the 4 criteria are enrolled onto the University Toolkit through our DSPT Framework process.  The University submits an annual self-assessment to NHS Digital. 

The Faculty of Medical Sciences led Information Governance for Health Research (IGHR) Steering Group oversees the toolkit for the University and has approved the DSPT Framework.  

If you think your work needs a toolkit then please contact the Information Governance Team recman@newcastle.ac.uk.