There have been significant changes to the DSP Toolkit since last year, including the need for most private practices to complete it if they refer any patients to the NHS.

We know how most dental practices love to hate compliance so we’ve created a comprehensive guide to the online DSP Toolkit that is user-friendly and makes completing the updated Toolkit quick and simple.

For just £175 £99, our guide also includes all the policies, protocols and templates needed to complete the Toolkit plus a handbook and checklists. You will receive no less than 23 resources!

What is the DSP Toolkit?

The Data Security and Protection Toolkit is an online self-assessment tool that allows organisations to measure their performance against the National Data Guardian’s 10 security standards.

The DSP Toolkit replaces the Information Governance kit and is updated in June every year. It is available for completion by 30 September at

Who needs to complete the DSP Toolkit?

All organisations that have access to NHS patient data and systems must use this toolkit to provide assurance that they are practising good data security and that personal information is handled correctly.

Private practices seeking to obtain an NHS email address for confidential referrals are also required to complete this toolkit.

Any private practice that does not want an NHS email address does not need to complete the DSP Toolkit, however the DSP Toolkit Helpdesk has advised that they think these will be few and far between.

You need to complete two levels on the DSP Toolkit

There are two levels to the DSP Toolkit:

  1. Entry level
  2. Mandatory level.

Entry Level

The first time a dental practice completes the toolkit can be ‘entry level’ this will be enough to gain an NHS email address.

Mandatory Level

In subsequent years, the mandatory questions must be completed. The information from the first year’s entry level questions and answers will be carried forward in the second year and each subsequent year, making it less onerous. Information from the mandatory questions and answers will also be carried forward every year.

Apolline provides detailed guidance on completing the Entry Level requirements and the Mandatory Level requirements together with suggested answers to the questions. We also provide all the policies, templates and resources required to complete both levels of the toolkit.

NHS England states that:

The Provider must complete and publish an annual information governance assessment and must demonstrate satisfactory compliance as defined in the Information Governance Toolkit (or any successor framework), as applicable to the Services and the Provider’s organisation type.

It remains Department of Health policy that all bodies that process NHS patient information for whatever purpose should provide assurance via the DSP Toolkit.

The CQC considers the completion of this toolkit a good example of your practice being well-led.

General Data Protection Regulations CPD

All team members should also undertake regular training in Data Protection and GDPR. We offer two free courses on GDPR training: 

Please note: All information on how to complete the DSP Toolkit online and all policies, templates and resources are provided free of charge to ApollineBASIL© users.

For further information on how Apolline can support your practice with completing the DSP Toolkit please contact us by phone or email.

Call: 0800 193 1033 or


0 0 vote
Article Rating
Apolline Logo Dental

Subscribe to our Newsletter

Why not join our mailing list to learn about the latest course releases and dental news? 

We NEVER share your information with third parties. 

You have successfully subscribed to our newsletter!