Approved Information Governance documents

These documents have been approved by either the Operational Management Group or the Information Risk Governance Committee.

NHS England Data Sharing Framework Contract - DSFC

Name	Description	Available for
CON-321538-B5D8B Version 2.03	NHS England DSFC with UCL (PDF) NHS England DSFC with UCL (PDF)	NHS England: Data Sharing Framework Contract. This applies to all data supplied to UCL by NHS England.

Recently updated (May 2024)

Name	Description	Available for
UCL-IG32	IG Framework Roles and Responsibilities IG Framework Roles and Responsibilities	Details roles and responsibilities within the IG Framework
UCL-IG31	Data Safe Haven Scope	Scope document for the Data Safe Haven Information Security Management System (ISMS)

Policy, planning and procedure

Name	Description	Available for
UCL-IG03	Research Information Governance Policy (PDF)	Research Information Governance Policy
SLMS-IG03b	Data Safe Haven Acceptable Use Statement (PDF)	Acceptable Use Statement, required for access to the Data Safe Haven
UCL-IG16	Training Policy (PDF)	Analysis of training needs, mapping appropriate elements of the DSP Toolkit training to roles
UCL-IG21	Offsite Working Policy and Procedure (PDF)	Policy and procedure for offsite working
UCL-IG36	Data Safe Haven Access Control Policy (PDF)	Policy for Access Control within the Data Safe Haven

Guidance

Name	Description	Available for
SLMS-IG04a	Data Handling Guidance (PDF)	Guidance on confidential data handling and secure transfer
	Data protection Guidance	Guidance on various aspects of data protection

Templates and tools

Name	Description	Available for
UCL-IG11	Information Risk Tool (SharePoint)	Used to capture information assets and assess risks associated with data transfer
Draft - work in progress	Joiners, movers and leavers checklist	Template joiners, movers and leavers checklist

Roles and responsibilities

Name	Description	Available for
IRGC ToR	Information Risk Governance Committee ToR (PDF) Information Risk Governance Committee ToR (PDF)	Terms of Reference for the UCL Information Risk Governance Committee (IRGC)
SLMS-IG02	SIRO Role (PDF)	Role description for the Senior Information Risk Owner (SIRO)
SLMS-IG05	IG Lead Role (PDF)	Role description for the Information Governance Lead
SLMS-IG07	IG Officer Role (PDF)	Role description for the IG Officer
UCL-IG31	Data Safe Haven Scope (PDF)	Scope document for the Data Safe Haven Information Security Management System (ISMS)
UCL-IG32	IG Framework - roles and responsibilities (PDF) IG Framework - roles and responsibilities (PDF)	Details roles and responsibilities within the IG Framework
UCL-IG35	Data Safe Haven Operational Management Group ToR (PDF) Data Safe Haven Operational Management Group ToR (PDF)	Terms of Reference for the ISMS Operational Management Group