The Data Security and Protection Toolkit is an online self-assessment tool that allows organisations to measure their performance against the National Data Guardian’s 10 data security standards.
All organisations that have access to NHS patient data and systems must use this toolkit to provide assurance that they are practising good data security and that personal information is handled correctly.
This system is subject to ongoing development.
What's new?
System changes and release notes (updated 20 December 2024)
A high-level summary of recent changes (and an MFA reminder) is provided here for reference.
Toolkit webinar slides (Updated 20 December 2024)
Including video and presentation slides from recent Webinar sessions including the changes to the DSPT for 24-25 for NHS Trusts, ALBs, ICB and CSUs.
DSPT 2024-25 audit guide for all outcomes has been published for NHS Trusts, CSUs, ICBs and ALBs (18 December 2024)
This document is being provided provide detailed guidance for how outcomes in 2024-2025 Data Security and Protection Toolkit (DSPT) will be audited.
DSPT 24-25 Interim (Baseline) assessment window now open (10 December 2024)
Details about the DSPT 24-25 Interim (Baseline) assessment for NHS Trusts, Integrated Care Boards, DHSC Arm’s Length Bodies and Commissioning Support Units.
Nominations open for the National Health and Care Information Governance Annual Awards 2025 (06 December 2024)
Working in Information Governance can be a tough and lonely place, whether as an Information Governance professional or as someone supportive of the discipline. Do you know someone who deserves recognition for their hard Information Governance work?
Data Protection Impact Assessment (22 August 2020)
The Data Protection Impact Assessment for the Data Security and Protection Toolkit is available here
