South West London CCG Annual Report and Accounts 2020/21

March 2021 and up to the date of approval of the annual report and accounts. Annual audit of Conflicts of Interest management The revised statutory guidance on managing conflicts of interest for CCGs (published June 2016 and further updated in June 2017) requires CCGs to undertake an annual internal audit of conflicts of interest management. To support CCGs to undertake this task, NHS England has published a template audit framework. An internal audit of the CCG’s conflicts of interest process was carried out in early 2021. The audit found many areas of good practice but highlighted one high priority action relating to the completeness of the CCG’s Conflict of Interests register. The CCG is in the process of delivering a number of actions to address this recommendation, further strengthening its conflict of interest processes. Data quality The Governing Body regularly receive reports that cover financial, governance, compliance, performance and quality matters for the CCG. The CCG has a business intelligence and performance function which monitors how local providers are performing against key performance indicators. This information is reported to the Governing Body on a regular basis. The data contained in the reports is subject to significant scrutiny and review, both by management and by Governing Body committees. The quality of information received to direct decision making is also assured through the service level specification arrangements with the North East London Commissioning Support Unit (NELCSU) and the use of contractual arrangements with the commissioned providers. The Governing Body are confident that the information they are presented with has been through appropriate review and scrutiny, and that it continues to develop with organisational needs. Information governance The NHS Information Governance Framework sets the processes and procedures by which the NHS handles information about patients and employees, in particular personal identifiable information. The NHS Information Governance Framework is supported by the Data Security and Protection Toolkit (DSPT) and the annual submission process provides assurances to the Clinical Commissioning Group, other organisations and to individuals that personal information is dealt with legally, securely, efficiently and effectively. The DSPT came into force for the 2018-19 financial year and replaces the information governance toolkit. The DSPT is now the recognised standard for cyber and data security within the NHS. The toolkit requires the CCG to demonstrate compliance with ten data security standards along with demonstrable compliance with the General Data Protection Regulations (GDPR). We have been working with our information governance team from NELCSU, in respect Annual Report and Accounts 2020/21 | 143