"Just a quick email to thank you for all your recent help with QES’s N3 application. Today we had our approval notification and can proceed with our business plans with NHS authorities; it’s fair to say we couldn’t have achieved it so quickly on our own!" Jayne Watkins, Quality Education Solutions
Supplying/Planning to supply the NHS?
IT Governance has a decade of experience helping clients to comply with the vast array of legal requirements and government guidance that applies to all organisations involved in the NHS; including:
Commercial third parties
The NHS IG Toolkit 10 (ITGv10) has up to 45 requirements classified under 6 initiative areas: therefore, achieving compliance can be time-consuming and demanding!
Where there is non-compliance, organisations need to take appropriate measures, (e.g. assign responsibility, put in place policies, procedures, processes and guidance for staff), to raise governance standards through year on year improvements. IT Governance consultants work with your IT team to ensure that you achieve full compliance on time, within budget.
Call IT Governance now on 0845 070 1750 to discuss how we can assist you.
IG Toolkit v10: The security compliance bar has been raised – are you ready?
IGT - version 10 breaks each requirement down into detailed criteria.
Our ISO 27001 Consultancy service speeds up the process of satisfying IGT requirements, helping you to answer the questions and gather the evidence to demonstrate compliance.
One of the requirements to comply with the IG Toolkit is related to staff awareness training. To assist you in meeting this requirement we have designed and developed the N3 and Information Security E-Learning Course for Commercial Third Parties (CTPs). If you are a Business Partner (BP) please contact us.
Why is it important to improve your IT security in line with the IG Toolkit?
Connecting for Health has the power to suspend an organisation’s N3 connection and the Information Commissioners Office (ICO) can issue fines of up to £500,000 for data security breaches. NHS Trusts need to complete IGT submissions and demonstrate appropriate levels of information security.
Possible consequences of non-compliance include:
Withdrawal of Care Records Service (N3, Choose & Book, ESR)
Information Commissioner is more likely to take enforcement action if there is a breach
Care Quality Commission (CQC) registration could be affected
An impromptu inspection by the Care Quality Commission
Your organisation is subject to an information security audit
Do you understand what is meant by ‘IGT’?
The IGT is an online system which allows NHS organisations and partners to assess themselves against Department of Health (DoH) Information Governance policies and standards. It also allows members of the public to view participating organisations' IGT assessments.
IT Governance has assisted private companies and NHS Business Partners (BPs) to achieve a connection to the N3 network in compliance with the IG Toolkit standard. All organisations that wish to use NHS Connecting for Health digital services, including the N3 network, must complete the IG Statement of Compliance process. They must carry out an annual assessment and show evidence their compliance with the toolkit IG assurance standards.
Commercial Third Parties (CTPs): Why Choose IT Governance Consultants?
We offer various levels of consultancy support IT Governance to our clients from an IGT/N3 gap analysis, to assistance with key milestones such as IGT training and auditing, through to full application and IG Toolkit submission on behalf of the client. Our rates are among the most competitive in this field.
The IT Governance NHS N3/IG Toolkit Connecting for Health ('CfH') Consultancy Service is specifically designed to assist Commercial Third Parties ('CTP') seeking to comply with the 17 requirements of the NHS IG Toolkit v10.
Our aim is to guide you through the CTP requirements and achieve IG Toolkit Compliance in the shortest possible time. We can usually do this in a matter of a few working days – in less time and for a minimal cost that is more than justified in terms of building your existing or new supply chain relationship with NHS local health trusts and other NHS organisations.
NHS Business Partners (BPs): Why Choose IT Governance Consultants?
IT Governance provides consultancy to organisations that, whilst remaining independent, work closely with NHS organisations and share common goals for providing high standards of healthcare directly to patients. The category includes DH Arms-Length Bodies (DH ALBs) and Independent Treatment Centres. The term Independent Treatment Centre encompasses Independent Sector Treatment Centres (ISTCs), private hospitals, hospices, and charitable foundations.
NHS Business Partners are distinct (in IG terms) from Commercial Third Parties (CTPs), as the nature of their service(s) suggest that they are more likely to have a need to actively process patient or personal data on a regular basis. Business Partners must therefore meet 29 requirements set out in the IG Toolkit compared to the 17 requirements that apply to CTPs.
Note: Commercial Third Parties should not under normal circumstances have such a requirement, although in exceptional cases (e.g. incident investigations) this may be required. IT Governance consultants will advise you on which requirements are applicable.
Contact our Consultancy team on 0845 070 1750 to discuss your IGT project
Consultancy services from IT Governance:
IT Governance can help you to implement projects involving: