Information Governance is a framework for handling personal information in a confidential and secure manner, adhering to ethical and quality standards in a modern health service. It provides a consistent way for employees to manage various information handling requirements, including data protection, confidentiality, and information security.

At NHS England, our information governance (IG) approach is built on the principles of openness, honesty, and transparency. We are committed to embedding IG at all levels of our programme to ensure a clear privacy by design and default approach.

By maintaining these high standards, we aim to uphold the trust and confidence of our stakeholders in the protection and management of their data.

For patients, this means that their personal information is handled with the utmost care and security. The IG framework ensures that data is protected and used appropriately, maintaining patient confidentiality and trust. By adhering to these standards, NHS England aims to provide a safe and efficient health service, where patient data is used responsibly to improve care and outcomes.

• Categories of personal data
• Legal grounds for processing confidential data
• FDP user organisation data protection officers
• Joint controllers
• National FDP products
• Local FDP products
• Sub-processors
• NHS Federated Data Platform privacy notice
• NHS FDP Data Protection Impact Assessment (DPIA)
• NHS FDP Information Governance Framework