Introduction and Policy Aims

All organisations and businesses must comply with the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.

This policy sets out how the care service meets its information governance duties and responsibilities under current data legislation and the GDPR.

The Information Commissioner’s Office is responsible for the implementation of data protection law and for investigating breaches of data security.


Information governance represents the systems, policies, procedures and processes adopted by the care service to ensure that data is always:

  • obtained fairly and lawfully

  • held securely and confidentially

  • recorded accurately and reliably

Want to read more?

This content requires a Croner-i subscription.

No Subscription?


Contact us to discuss your requirements.

Call an Expert:

0800 231 5199

Talk to us on

live chat