Promote Good Practice in Handling Informations
Promote good practice in handling information in health and social care settings
1.1 Identify legislation and codes of practice that relate to handling information in health and social care
The Data Protection Act is mandatory. ALL organisations that hold or process personal data MUST comply. The Data Protection Act 1998 (DPA 1998) is an act of the United Kingdom (UK) Parliament defining the ways in which information about living people may be legally used and handled. The main intent is to protect individuals against misuse or abuse of information about it.
1.2 Summarise the main points of legal requirements and codes of practice for handling information in health and social care
The Data Protection Act relates to all information that is kept on an individual.
There are eight basic principles to the Data Protection Act.
The Data must be: * Fairly, and lawfully processed. * Used for limited purposes. * Not excessive, but adequate and relevant. * Not kept for longer than necessary. * Accurate but concise, containing only facts not assumptions, of the person making an entry. * Kept secure at all times, information kept on computers should be password protected. * Processed, taking into account the Individuals rights. * Not transferred to another country that can not maintain the confidentiality of the information.
2.1 Describe features of manual and electronic information storage systems that help ensure security
* Only discussing information in confidential setting * Only discussing information with members of staff, who need to know the information * Ensuring that written records are kept in locked cabinet * Ensure that staff message book is kept secure in office * Ensure that computer files are password protected * Ensuring that service user personal files are kept in secure location in office * Not having telephone conversations regarding service users in front of other service
1.1 Identify legislation and codes of practice that relate to handling information in health and social care
The Data Protection Act is mandatory. ALL organisations that hold or process personal data MUST comply. The Data Protection Act 1998 (DPA 1998) is an act of the United Kingdom (UK) Parliament defining the ways in which information about living people may be legally used and handled. The main intent is to protect individuals against misuse or abuse of information about it.
1.2 Summarise the main points of legal requirements and codes of practice for handling information in health and social care
The Data Protection Act relates to all information that is kept on an individual.
There are eight basic principles to the Data Protection Act.
The Data must be: * Fairly, and lawfully processed. * Used for limited purposes. * Not excessive, but adequate and relevant. * Not kept for longer than necessary. * Accurate but concise, containing only facts not assumptions, of the person making an entry. * Kept secure at all times, information kept on computers should be password protected. * Processed, taking into account the Individuals rights. * Not transferred to another country that can not maintain the confidentiality of the information.
2.1 Describe features of manual and electronic information storage systems that help ensure security
* Only discussing information in confidential setting * Only discussing information with members of staff, who need to know the information * Ensuring that written records are kept in locked cabinet * Ensure that staff message book is kept secure in office * Ensure that computer files are password protected * Ensuring that service user personal files are kept in secure location in office * Not having telephone conversations regarding service users in front of other service