NHS Data Security and Protection Toolkit
The NHS Data Security and Protection (DSP) Toolkit is mandatory for all organisations with access to NHS patient data and systems. This template guides you through achieving a Standards Met assessment, the minimum required for NHS Digital connection.
Quick Answer
The NHS DSP Toolkit is the annual compliance self-assessment required for all NHS and supplier organisations handling NHS patient data. Standards Met is the minimum threshold. It maps to the 10 National Data Guardian standards, requires Cyber Essentials certification, and must be published annually by 30 June.
Compliance Checklist (8 items)
Penalty if not compliant
Failure to achieve Standards Met can result in revocation of NHS Digital system access, including N3/HSCN connectivity. NHS England can also refer to the ICO for GDPR enforcement. Data breaches at NHS suppliers attract significant regulatory and reputational consequences.
Need this turned into a real document?
Our compliance sprint service delivers production-ready documents tailored to your organisation in 5–15 business days. A senior compliance specialist reviews every document before delivery.