Information Review

Closed 14 Oct 2019

Opened 5 Aug 2019


The purpose of this review is to identify what corporate records, information and information assets NHS Improvement holds and identify gaps and risks in the current systems.  We need to innovate within the information, communication and technology (ICT) domain and to ensure NHS Improvement is fully compliant in regards to current legislation such as the General Data Protection Regulation [GDPR], Data Protection Act 2018 (DPA18) and the Freedom of Information Act, thus reducing any potential financial and reputational risks in the future. Our records are the basis for organisational accountability, compliance with legislative requirements and the development of the corporate memory.

This audit will assess the status, location, risk, visibility and ownership of essential corporate records and information.  Once completed, the audit will present a clear view of the corporate records and information that NHS Improvement holds.  Thank you for your help with this important process. 

For guidance on records management, see the intranet page below:

More details on why we are doing this review are available here: