Skip to main content Skip to footer

Information security

Keeping your personal information secure

As an arm’s length body (ALB) to the Department of Health and Social Care and wider HM Government, we are bound to follow the HMG Security Policy Framework to make sure our customers' data is handled and stored securely. We also adhere to the NHS Digital Data Security and Protection Toolkit.  

When we receive your data, we protect it in line with the standards set by HM Government. However, we recommend that when emailing us your data, you do so using a secure solution. We offer an online secure form for most of our services.

Plaintext email is not a secure method of communication as there is no safeguard we can offer before we receive your data. There are various secure email solutions freely available to the public and we recommend that you utilise these in communicating your personal data with any organisation or body including ourselves when doing so via email. 

For further information, please see: 

Information Commissioners Office Guidance for individuals

GOV.UK - Transport Layer Security encryption protocol

Google - email encryption FAQs