Records Management Policy

The purpose of this policy is to provide a framework which enables the ICB to set out its records management arrangements for both its digital and paper records. This policy ensures that the ICB is able to comply with the legal and professional obligations set out for records and in particular:

  • Public records Act 1958
  • Data Protection Act 2018
  • Access to Health records 1990
  • Freedom of Information Act 2000
  • Regulation of Investigatory Powers Act 2000
  • General Duty Protection Regulations 2016 (GDPR)
  • Records Management Code of Practice for Health and Social care 2016

Failure to comply with the regulations could result in reputational damage to the ICB and carries financial penalties of up to £500,000 imposed by the Information Commissioner.

This policy relates to all records and applies to all staff working in or on behalf of the ICB (this includes employees, GP practice members in the course of any work for the ICB, contractors, temporary staff, secondees, students and volunteers). This policy also covers records created by members of staff who work within an integrated team.

View the policy

Pages in this section: