eHealth IT Security Policy

eHealth IT Security Policy

The eHealth Security policy exists to comply with NHS Scotland Guidance in addition to ensuring that NHS Lothian continues to treat IT assets and personal identifiable data with due care and diligence.

All staff using IT should understand that they are contractually responsible for following good IT security practice, are appropriately trained, and know where to locate appropriate support.

This policy applies to all staff employed by NHS Lothian, including agency and bank staff, all students, volunteers and agency and contractors working on behalf of NHS Lothian.

The policy ensures that:
• appropriate levels of security are in place to maintain the confidentiality, integrity and availability of information and information systems; and
• all employees are aware of the limits of their authority and the levels of their accountability for their actions.

Please see the document below for the full policy.