Who manages your information

Caldicott Guardian

A Caldicott Guardian is a senior person responsible for overseeing the use of patient confidential information within services commissioned to ensure that it is being used lawfully, ethically and in the best interest of the patients.

The Caldicott Guardian has a strategic role, which involves representing and supporting issues related to information sharing at Board or Committee level.

The Caldicott Guardian for NHS North East Lincolnshire Clinical Commissioning Group is:-  Dr Anne Spalding


Senior Information Risk Owner (SIRO)

The Senior Information Risk Owner (SIRO) is an Senior Manager at Board Level responsible for overall ownership of the Organisation’s information risks and risk assessment process, ensuring the CCG has a robust incident reporting process for information risks. 

The SIRO acts as champion for information risk on the Board and provides written advice to the Accounting Officer on the content of the Organisation’s Annual Governance Statement in regard to information risk.

The SIRO for NHS North East Lincolnshire Clinical Commissioning Group is:- Jan Haxby -  Registered Strategic Nurse & Director of Quality 

Data Protection Officer 

Under data protection and GDPR legislation the CCG is required to have a Data Protection Officer (DPO) and it is their role to:

  • Inform and advise the organisation and its employees about their obligations to comply with with the GDPR and other data protection laws;
  • Support and monitor compliance with GDPR and other data protection laws, including managing internal data protection activities, advise on data protection impact assessments; train staff and conduct internal audits;
  • To be the first point of contact for supervisory authorities and for individuals whose data is processed. 

The Data Protection Officer  for NHS North East Lincolnshire Clinical Commissioning Group is:- Paul Ellis -  Information Governance and Data Protection.