Clinical Governance & Data Security

Overview

Virtual Pharmacist provides a fully managed remote clinical pharmacy service, with clinical responsibility and governance sitting with us as the provider. This page sets out the clinical, professional, information-governance and data-security standards that underpin our work.

Clinical governance framework

Our clinical governance framework is overseen by Clinical Director Laura Billyard and encompasses clinical audit, peer review, incident reporting and learning, and continuous quality improvement.

Every service is delivered to documented protocols, with clear escalation routes to a GP or senior pharmacist.

Professional registration and competence

Every pharmacist and pharmacy technician delivering our services is registered with the GPhC and in good standing, and is supported to maintain CPD and revalidation. Before they begin, we complete pre-engagement checks including identity, right-to-work, GPhC registration verification and references, and our clinicians hold DBS checks (enhanced where required). Independent Prescribers hold an active IP qualification and work within their scope of competence.

Clinical accountability and indemnity

Virtual Pharmacist holds clinical responsibility for the services we deliver. Final prescribing and clinical decisions remain with the patient’s responsible GP, in line with agreed protocols. Virtual Pharmacist holds medical malpractice insurance.

Information governance and data security

Virtual Pharmacist has met the NHS Data Security and Protection Toolkit (DSPT) standard (“Standards Met”) every year since 2020-21 (ODS code S6I6X). We handle all patient data in line with UK GDPR, the Data Protection Act 2018 and NHS information governance standards.

Our clinicians work entirely within your own clinical systems (EMIS Web or SystmOne) under formal data sharing agreements with each practice and PCN
System access is provisioned through NHS smartcards
Patient data is encrypted in transit and at rest
We apply data minimisation and need-to-know access

Our Information Governance lead is Luke Billyard. For any information-governance or data-security query, contact [email protected].

Cyber security

We hold Cyber Essentials certification, and all connectivity to NHS clinical systems is over the secure Health and Social Care Network (HSCN).

Safeguarding

All clinical personnel complete safeguarding training appropriate to their role, with clear routes to raise and escalate safeguarding concerns.

Quality and standards alignment

Our clinical work is aligned to national guidance, including NICE guidance, the BNF and MHRA drug safety alerts, and supports practices with QOF, IIF and CQC readiness.

Policies and assurance

We maintain internal policies including an Information Security Policy and data-protection and information-governance policies. Assurance documentation is available to commissioning partners on request.

Accreditations and verification

Our certifications can be independently verified:

NHS Data Security and Protection Toolkit: Standards Met. Verify our DSPT record.
Cyber Essentials: certified. Verify on the IASME certificate search.
GPhC: all our pharmacists and pharmacy technicians are registered with the General Pharmaceutical Council.

About Us

Quality Audits & Compliance Management

Medication Reviews & Prescription Management

Managing Long-Term Conditions