Transcript Slide 1

Sharing Personal Information (SPI)
Working Together and the WASPI:
the path to safe, legal and confident
Why is sharing critical?
People live across organisational boundaries
Manifesto commitment to improving Public
Service effectiveness and efficiency - focus on
outcomes requires collaboration for delivery
Legislation protects the individual and enables
SPI, but is complex.
‘Tower of Babel’ - procedures agency-specific
Low levels of knowledge, awareness and
confidence - even where safeguarding needed
HIW: lack of SPI a significant factor in failure of
care in 90% of reviews
Evidence : 3 key programme areas
“… need an all-Wales approach with clear all-Wales
rules” (GP rep)
“… there is disparate strategic thinking and operational
delivery “ (VOL)
“.. no central governance controls over the partners”
“.. all the partner organisations need to engage” (LA)
What is the SPI Programme?
WG-led collaboration to improve practice standards
Public, third sector and private organisations, crossboundary
Effective sharing, management and use of information to
deliver jointly services that meet individual need
Staff confident to share safely and legally
Transformation and organisational change require
executive leadership and partner engagement
WASPI: the single “Gold Standard” for all SPI
Support with advice, troubleshooting, ISP
“do once and share” examples
check and assure new protocols
Local collaboration
practice development and management of
advice, guidance and training
over time provide objective authority
Demonstrate benefits through research, sharing
practice - Events, Community of Practice
Next actions include:
•Explore interest in bringing together IS/IG
•Presentation to Public Sector Leaders’ Group
•Link Community of Practice to Best Practice Wales
•Obtain police sign up to the WASPI Accord
•Work with ICO to share practice
Anne Jones, Assistant Commissioner
Problems tend to arise where organisations:
•Fail to allocate central responsibility for IG and
compliance; and
•Lack clarity on the respective roles of legal, IT and
compliance departments.
Good practice is evident where:
•data protection roles are clearly defined;
•intranet and internet are used to keep staff informed
of the relevant policies; and
•proper staff training is provided.
Get with the Programme!
[email protected]
Webinfo topics/improvingservices