Ash Lane Consulting provide a set of specialist services to the Primary Care sector to improve operational efficiency. Due to the nature of their work with GP practices and the increasing requirement to provide evidence of the having a minimum level of data security in place, plus the impact of Covid-19 on their working practices, Ash Lane Consulting asked Monmouth Partners to undertake two specific pieces of work:
- NHS Data Security & Protection Toolkit (DSPT)
Within the NHS sector, organisations are expected to show complete the NHS Data Security & Protection Toolkit (DSPT) as proof that they have a minimum level of security in place. As Ash Lane Consulting had not undertaken a DSPT assessment before, Monmouth worked with the local team and completed the submission plus provided additional supporting documentation where required.
- Remote Access Assessment
Ash Lane Consulting staff usually attend a practice site to review records and carry out their audits, however, this was no longer possible due to the Covid-19 lockdown and they were therefore looking for a solution that would allow them to undertake their work remotely.
Monmouth completed a risk based assessment of a range of products and identified a solution that met the various legislative and NHS requirements from a data protection and security perspective. Where their clients did not already have a recommended remote access solution, Ash Lane Consulting would then be able to recommend this option in the knowledge that it was compliant and secure.
To provide additional assurance for their clients, Monmouth Partners also provided a Data Protection Impact Assessment (DPIA) that covered the recommended solution and how it would be used by Ash Lane Consulting when carrying out their work with the GP Practices.