Learn, Do Not Copy!

Support audit processes in line with own role and responsibilities

This page is designed to answer the following questions:

NOTE: This page has been quality assured for 2021 as per our Quality Assurance policy.

Audits are used to identify vulnerabilities, risks and errors within an organisation by testing and monitoring security, accuracy and efficiency.

The organisational audit processes you are involved in relating to data handling will depend on your particular role and responsibilities. This could mean:

  • checking paperwork to ensure that it is filled out correctly
  • reporting any security issues you discover
  • performing monthly checks on Medication Administration Record (MAR) sheets
  • ensuring staff are following correct practices
  • reviewing policies and procedures

Although you may not be responsible for conducting data storage, security or protection audits yourself, it is important that you are able to contribute to these processes.

Audits will also contribute towards Care Quality Commission (CQC) inspections and will help to ensure that your organisation complies with Key Lines of Enquiry (KLOEs). For example, Code W6.7 states:

Are there robust arrangements (including appropriate internal and external validation) to
ensure the availability, integrity and confidentiality of identifiable data, records and data
management systems, in line with data security standards? Are lessons learned when
there are data security breaches?

This is something that inspectors will look at and your organisation will have to provide evidence of compliance in terms of both systems and practices.