Caldicott Principles

The Caldicott Principles

The Caldicott Principles apply to health and social care organisations’ use of personal information. These organisations are required to observe the following principles when using personal information:

  • Justify the purpose
  • Not use personal information unless it is absolutely necessary
  • Use the minimum amount of personal information that is necessary
  • Access to personal information should be on a strict need-to-know basis
  • Everyone should be aware of their responsibilities with regard to personal information
  • Action should be taken to ensure that those handling personal information are aware of their responsibilities and obligations to respect an individual’s confidentiality; and
  • Understand and comply with the law.

Each health and social care organisation has a Caldicott Guardian. These individuals should be consulted when there is a requirement from the agencies they represent to share personal information.

For more information about Caldicott Guardians including how to register as a Caldicott Guardian and how to view the national register click here