Departmental Data Protection

Health written question – answered on 12th January 2009.

Alert me about debates like this

Photo of Shailesh Vara Shailesh Vara Shadow Deputy Leader of the House of Commons

To ask the Secretary of State for Health what percentage of the IT systems in (a) his Department and (b) its agencies are fully accredited to the Government's security standards.

Photo of Ben Bradshaw Ben Bradshaw Minister of State (Regional Affairs) (South West), The Minister of State, Department of Health

All the Department's information technology (IT) systems meet the requirements set out in the Security Policy Framework (SPF), the "Data Handling Report" (DHR) and related "Cross Government Actions: Minimum Mandatory Measures". They also comply with ISO27001, the standard for Information Security Management.

Of its agencies, the NHS Purchasing and Supply Agency's IT systems are fully certified to ISO27001 and they are required to comply with the requirements of the SPF and the DHR.

The Medicines and Healthcare Regulatory products Agency and all its suppliers are compliant with the Government's security standards and the data handling procedures.

Does this answer the above question?

Yes0 people think so

No0 people think not

Would you like to ask a question like this yourself? Use our Freedom of Information site.