Cryptographic Controls Policy

Ref/ID: NCAF022(21) V1.1

Download

The NCA NHS Group has a responsibility to protect the Confidentiality, Integrity and Availability of all data which it stores and processes, and the systems which are used to do so.

This policy outlines the guidelines for procedures to provide appropriate levels of protection for sensitive and confidential information using encryption, while ensuring compliance with regulatory and contractual requirements.

All staff are responsible for protecting the information assets in their work area and for reporting any risks and incidents using the NCA NHS Group’s Cyber and Emergency Incident Response Procedures.

This policy outlines the NCA NHS Group’s requirements in line with Security and Information legislation and standards.

Categories:

Finance and digital: Data, Security, Information governance

Published: 01/09/2021

Status: Up to date - due for review on 22/07/2026

Author: Janet.Eivers@nca.nhs.uk

Owners:

Corporate: Informatics & Digital

Applicable to:

Bury Care Organisation
Oldham Care Organisation
Rochdale Care Organisation
Salford Care Organisation
Diagnostics & pharmacy
Northern Care Alliance (all)