Independent sector health and social care organisation Care UK has achieved the ISO 27001:2013 standard for information security management.
The best practice standard demonstrates Care UK’s ability to identify potential risks to information security and its ability to put in place robust measures to keep data secure.
ISO 27001 provides assurances to Care UK’s patients, as well as to business partners such as NHS England, the Health and Social Care Information Centre (HSCIC), Care Quality Commission (CQC), Clinical Commissioning Groups (CCGs), NHS trusts and others, of the high standards that the organisation adheres to when managing patient data.
Barry Nee, chief information officer, said: “Information governance is extremely important to us, our patients and our commissioners. I’d like to thank our information security, operational and governance teams for their commitment to ensuring our standards are maintained at all times.”
Care UK has maintained the ISO 27001 standard since 2005. During the current review, it was commended for the excellent controls it displayed.