This practice is committed to preserving, as far as is practical, the security of data used by our information systems. This means that we will take all reasonable actions to:
Maintain the Confidentiality of all data within the practice by:
- Ensuring that only authorised persons can gain access to our systems.
- Not disclosing information to anyone who has no right to see it.
Maintain the integrity of all data within the practice by:
- Taking care over input.
- Ensuring that all changes are reported and monitored.
- Checking that the correct record is on the screen before updating.
- Reporting all apparent errors and ensuring that they are resolved.
Maintain the availability of all data by:
- Ensuring that all equipment is protected from intruders.
- Ensuring that backups are taken at regular, predetermined intervals.
- Ensuring that contingency is provided for possible failure or equipment theft and that any such contingency plans are tested and kept up to date.