What Good Looks Like Framework
In May 2023, the government published guidance for care providers and local authorities on What Good Looks Like (WGGL) for digital working in adult social care.
The guidance details 7 success measures which provide common goals for organisations to work towards. The guidance is aimed at people who have a responsibility for digital transformation in local authorities.
Read our blog from South West ADASS about what this means for data protection in social care.
Success Measure 3 – Safe Practice
This success measure details the importance of taking informed steps to protect people’s health and care information against cyber threats and data breaches. This includes making sure that staff are trained, the organisation has clear policies and processes, including business continuity plans, to respond to a data breach or cyber attack.
The guidance recommends that local authorities should:
- work with providers to ensure robust resilience plans are in place, and there is confidence in responding to cyber and information governance incidents across the sector.
- support the sector in safe practice and cyber security, and use contracting and commercial mechanisms to incentivise commissioned care providers to complete the Data Security and Protection Toolkit (DSPT), recognising that care providers are at different levels of digital maturity.
- embed good cyber security practices, and complete the DSPT if processing health and care data.
The guidance recommends that care providers should:
- complete the DSPT annually, to a minimum level of ‘standards met’ if CQC registered. Non-CQC registered providers should use the DSPT to check and improve their data and cyber security arrangements.
- make use of available free support and guidance through the Better Security, Better Care programme.