Information Security Guidance
  • Disclosure of PID via telephone should be the exception rather than standard
  • practice.
  • Always confirm the identity of the other party before disclosing information.
  • Dial back arrangements should be used to ascertain the person is authorised to
  • receive the data.
  • The member of staff should ensure that they know the reason why the other party
  • requires the information.
  • Recorded telephone messages must be received into a secured, password protected
  • voicemail box.
  • For times of absence, a deputy should be appointed and an administrator password
  • made available.
  • Any log books used to record phone messages should be stored securely.
  • Any conversation that takes place on the telephone relating to a patient or member
  • of staff should be documented and a record kept filed in their case notes or
  • personal file.