Data Security and Protection Toolkit

01 May 2024

Data security and protection are essential for the NHS and its partners, who handle sensitive and personal information for millions of patients. The Data Security and Protection Toolkit (DSPT) helps organisations demonstrate their compliance with best practices for safeguarding and managing data. The deadline for organisations to submit their DSPT is 30 June 2024.

The DSPT is based on the 10 National Data Guardian’s Data Security Standards, which cover various aspects relating to people, processes, and technology as essential components in data security.

DSPT requirements vary according to which category your organisation falls into. From 2023/24, organisations who previously selected ‘company’ as their primary sector must re-select their primary sector, and a new sector of IT supplier has been added. If you have more than 50 staff, turnover of over £10m and you supply digital goods and services to the NHS or care, you meet the definition of an IT supplier. IT suppliers now fall into Category 1 and need to comply with additional requirements in their DSPT assessment.

Healthcare organisations and other NHS partners must undergo an annual independent assessment of their DSPT submission, which evaluates the overall risk rating associated with the organisation’s data security and the accuracy of their self-assessment. This provides external validation and assurance that the organisation is meeting the required standards and expectations for data security and protection.

How we can help

RSM UK is a leading provider of independent DSPT assessments to healthcare organisations and NHS partners, including NHS trusts, integrated care boards, companies and IT suppliers.

Our assessment is undertaken in line with the DSPT Strengthening Assurance Framework and Guide, published by NHS England. Our methodology is fully in line with the NHS England DSPT assessment criteria for DSPT sign off purposes and we can effectively support you in meeting your annual DSPT submission.

To find out more about how RSM can assist you, please contact Steven Snaith. 

Steve Snaith
Steven Snaith
Partner
Contact Steven Snaith +44 (0)79660 39009
Anna O’Keeffe
Anna O’Keeffe
Director
AUTHOR
Steve Snaith
Steven Snaith
Partner
Contact Steven Snaith +44 (0)79660 39009
Anna O’Keeffe
Anna O’Keeffe
Director
AUTHOR
Services
Industry

Related insights

UK General Election 2024 – what are the tax implications?

Dan Robertson, David Williams-Richardson
08 Jul 2024

New QCA and FRC corporate governance codes – which is more current?

Tom Proverbs-Garbett
14 Jun 2024

Payment services regulations and compliance

Riza Unal, Sheila Pancholi
14 Jun 2024

R&D tax reliefs: the changing landscape

James Tetley
13 Jun 2024

The importance of SWIFT Accreditation

Steven Snaith
12 Jun 2024

CleanTech Lithium PLC: Provision of global outsourcing services across three countries

Harry Capewell, Graham Ricketts
06 Jun 2024