Skip navigation Home Patients & visitors Our services Search Help Contact us Terms and conditions Accessibitity Page
You are here:

About us

Information Governance

What is 'information governance'?

The term "information governance" is given to the framework of legal rules, guidance and best practice that apply to the handling of information. The ultimate aim is to demonstrate that an organisation can be trusted to maintain the confidentiality and security of personal information, by helping individuals to practice good governance and to be consistent in the way they handle personal and corporate information.

Information governance is also sometimes referred to as "data security" or "data protection". You can find more information on the NHS Digital website:


What is covered by information governance at Poole Hospital?

Poole Hospital is registered as a 'data controller' with the Information Commissioner's Office under registration no. Z5566239.

The information governance function at Poole Hospital is supported and regulated by the following key roles:

The remit of information governance at Poole Hospital covers a wide range of activities, including information security, confidentiality, data protection, records management, information sharing, freedom of information, subject access requests, data risks/incidents and recording information assets. We have provided some guidance below on some of the key areas:

  • Accessing Records: Under the terms of data protection legislation, you are entitled to access and receive copies of the information that we hold about you. This is known as a "subject access request". Please click here for further details on how to apply.  
  • Data Security and Protection: We are bound by the requirements of data protection legislation to ensure that all information is managed securely and lawfully - please see below for details on how we demonstrate our compliance. You can also find more information in our privacy notices, or provide us with feedback via our online survey
  • Freedom of Information: As Poole Hospital is a public organisation, people have a formal right to access certain information about the way decisions are made in the organisation and how public money is spent . Please click here for further details on how to apply.  
  • Information Sharing: To help provide patients with the best possible care, sometimes we will need to share information with others. However, this will always be governed by specific rules and laws. Further guidance is included within our privacy notice.


How does Poole Hospital ensure compliance?

All of our staff are required to complete annual 'Information Governance and Data Security Awareness' training. We also have a number of policies and procedures in place which staff must follow, including:

All NHS staff are also required to follow the NHS Confidentiality Code of Practice and are bound by the common law duty of confidentiality.

We are also required to complete an annual Data Security and Protection Toolkit assessment (previously the Information Governance Toolkit). Please click here for further details.


Where can I find further information?

For requests under the freedom of information provisions, please click here.

For requests under data protection legislation, please click here.

For all other information governance related enquiries:


Tel:        01202 448689

Post:      Information Governance Department
              Poole Hospital NHS Foundation Trust
              Longfleet Road
              Poole BH15 2JB

Poole Hospital NHS Foundation Trust, Longfleet Road, Poole, Dorset BH15 2JB. Tel: 01202 665511

© Copyright Poole Hospital NHS Foundation Trust 2019.

Designed and developed by Merchant Marketing Group.