We helped this GP specialist supplier adapt in the face of Covid-19 by assuring how they access patient records remotely.
Ash Lane Consulting provide a set of specialist services to the Primary Care sector to improve operational efficiency. We helped them maintain and develop their work with GP practices - helping them evidence the data security in place and how they had adapted to respond to the impact of Covid-19 on working practices.
We undertook two specific pieces of work:
- NHS Data Security & Protection Toolkit (DSPT)
Within the NHS sector, organisations are expected to show complete the NHS Data Security & Protection Toolkit (DSPT) as proof that they have a minimum level of security in place. As Ash Lane Consulting had not undertaken a DSPT assessment before, Monmouth worked with the local team and completed the submission plus provided additional supporting documentation where required.
- Remote Access Assessment
Ash Lane Consulting staff usually attend a practice site to review records and carry out their audits, however, this was no longer possible due to the Covid-19 lockdown and they were therefore looking for a solution that would allow them to undertake their work remotely.
Monmouth completed a risk based assessment of a range of products and identified a solution that met the various legislative and NHS requirements from a data protection and security perspective. Where their clients did not already have a recommended remote access solution, Ash Lane Consulting would then be able to recommend this option in the knowledge that it was compliant and secure.
To provide additional assurance for their clients, Monmouth Partners also provided a Data Protection Impact Assessment (DPIA) that covered the recommended solution and how it would be used by Ash Lane Consulting when carrying out their work with the GP Practices.