Where and what are the boundaries of the ‘safe haven’ which are being accredited – the charter restricts the definition to the analytical platform where access to anonymised data is being given, but does not necessarily include the preceding stages (anonymisation/linking agents, etc)?
The boundaries of the ‘safe haven’ should include the linkage agent etc if outside of the NHS. Parts of the infrastructure within the NHS will be documented as coming under the security requirements of the NHS but clear pathway for this is required.