The Caldicott Principles
The Caldicott Principles apply to health and social care organisations’ use of personal information. These organisations are required to observe the following principles when using personal information:
- Justify the purpose
- Not use personal information unless it is absolutely necessary
- Use the minimum amount of personal information that is necessary
- Access to personal information should be on a strict need-to-know basis
- Everyone should be aware of their responsibilities with regard to personal information
- Action should be taken to ensure that those handling personal information are aware of their responsibilities and obligations to respect an individual’s confidentiality; and
- Understand and comply with the law.
Each health and social care organisation has a Caldicott Guardian. These individuals should be consulted when there is a requirement from the agencies they represent to share personal information.
For more information about Caldicott Guardians including how to register as a Caldicott Guardian and how to view the national register click here