Data security and protection toolkit guidance

What is the Data Security and Protection Toolkit?

The Data Security and Protection Toolkit (DSPT) is an online self-assessment tool that allows organisations to measure their performance against the National Data Guardian’s 10 data security standards.
All organisations that have access to NHS patient data and systems must use the DSPT to provide assurance that they are practising good data security and that personal information is handled correctly. 

The DSPT is an annual assessment. As data security standards evolve, the requirements of the Toolkit are reviewed and updated to ensure they are aligned with current best practice. Organisations with access to NHS patient data must therefore review and submit their DSPT assessment in each financial year before the 31st March deadline.
Thames Hospice outside
Boardroom meeting 3 people

Experienced support for our Hospice and healthcare customers' DSPT submissions

Riverlite provides expert and accurate help to support our Hospice and healthcare Care customers, with the completion of the NHS Data security and protection toolkit. As part of any submission specific data and metrics are required, which often the IT team needs to provide.

We understand our responsibilities in providing Compliance officers with the correct data and procedures to complete the online self-assessment tool, so they can successfully measure their performance against the National Data Guardian’s 10 data security standards.

Data security standards met

Riverlite has been working with our health care customers for over 5 years on the toolkit provision and we meet the ‘Standards Met' on the NHS DSPT website.

We practice daily the 10 DSPT key requirements because we have implemented the overlapping standards of the ISO 27001 Information Security Management System, giving our customers assurance and advice on their Compliance work. 

NHS digital toolkit logo

Free data security and toolkit assessment

Make your compliance role easier
+44(0)1223 911191
Fill out a contact form 

Examples of data security and provision support Riverlite have provided

  • Gather technical information related to the infrastructure to enable a local hospice to complete their DSPT submittal
  • Make recommendations on the environment to ensure that it is DSPT compliant, for example, email filtering, internet filtering, firewall controls, access control & password policy, identifying and managing end of life software and systems
  • Carrying out vulnerability assessment and carrying out remedial task and activities
  • Simulated Phishing attacks to identify training needs for individual users
  • Technical controls to assist local hospice comply in the form of a login banner on the PC and Internet banner highlighting that Internet traffic is monitored
  • Assisted writing their IT Acceptable Use Policy
Thames Hospice 2 people looking at laptop
  • Helping our customers

    ‘‘ Riverlite have successfully given us everything we need for the completion of our 2019/20 Data Security and Protection Toolkit submission. Having provided this information for the toolkit for a number of years they know the importance of what to provide promptly and accurately to enable us to meet attainment levels required for the annual submission of the toolkit ’’
    Sheena Fisher, Clinical Services Support Manager/Data Protection Officer, Arthur Rank Hospice
    arthur rank

Importance of protecting personal data

Riverlite understand the importance of protecting personal data and the individual that the data relates to, as such we fully endorse and adhere to the principles of the General Data Protection Regulation (GDPR). As part of the ISO 27001 certification and our compliance to GDPR Riverlite has policies and procedures in place for the following:

  • Personal Confidential Data
  • Staff Responsibilities
  • Training
  • Managing Data Access
  • Process Reviews
  • Responding to Incidents
  • Continuity Planning
  • Unsupported Systems
  • IT Protection
  • Accountable Suppliers

Riverlite are ISO 27001 certified.  Read the case study that our information security management system (ISMS) specialist partner Intertek wrote on our commitment and journey to certified ISO compliance.

Our Services

Your care establishment is unique, and our leading industry solutions are designed to support your set up.
These solutions include a dedicated helpdesk, cyber security services, IT consultancy and managed cloud services. 

Riverlite Hospice IT Services

Riverlite provides personable, secure IT managed services, which are tailored for Hospices.

We provide a variety of services, including a complete IT Managed Service. Our approach is designed to ensure all users, staff and nurses can simply concentrate on their primary responsibilities, which IT quietly supports. 

Find out more about Hospice IT services

Cyber security services

Riverlite cyber security services defend your internet connected systems, computers, servers, networks and mobile devices from malicious attacks.

The damage to your business can be financial, reputational or operational. All of which, require time, money and resources to rectify and recover. As always, prevention is the best cure.

Find out more

Managed cloud services

Riverlite offer two main cloud solutions: Cloud hosting with Microsoft Azure and hybrid solutions. 

Each of these are supported by the cloud backup, DRAAS (Disaster recovery and Business Continuity), Office 365 support as well as security systems that surround all our managed services.

Find out more

IT Consultancy

Our professional services team support our clients in covering every stage of the IT lifecycle, from assessment, design, planning, implementation and support.

Whether you are a fast growing start up or an established business, IT will play an integral role in how your organisations grows and adapts.

Our team of accredited IT professionals deliver services on-site or remotely depending on our clients' requirements.

Find out more
Got a question?
We are always happy to answer any questions you may have for us. So, if you wish to discuss your infrastructure, find out about the latest technologies or see how you can reduce costs, then get in touch and a member of our team will be happy to assist you.
Simply complete the form here, or alternatively contact us using the details below:

    [anr_nocaptcha g-recaptcha-response]

    crossmenu linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram