IG Requirements for subscribers to the NEMS
The following requirements must be met by subscribing organisations in order to meet the information governance (IG) requirements of the NEMS. These requirements are aimed at making sure that data is available to Data Protection Officers, Caldicott Guardians and IG leads if it is required.
Auditing
The auditing done within a subscribing systems to the NEMS must contain enough information to:
- identify which systems have consumed data received via the NEMS
- identify how the the data received has been used
- identify who has has accessed the data received via the NEMS
