Process for Adding SCR Permission to a Smartcard
From 1 April 2017, a new process for pharmacies and pharmacy staff to register for access to Summary Care Records (SCR) was introduced.
Process
For a pharmacist or pharmacy technician – the user
1. Check your smartcard – Make sure your smartcard is working. (This is the same smartcard that’s used for EPS access.) Put the smartcard in the reader and follow the instructions to check it isn’t locked and that you know the PIN. Visit the Smartcard help section HERE or contact your local Registration Authority (RA) for help with problems, or if you don’t have a smartcard.
2. Complete the online CPPE training – Complete the CPPE e-learning SCR module and assessment to get a certificate. You must enable data sharing on the CPPE website so that NHS Digital can confirm that the module has been successfully completed.
3. Request the Summary Care Record role for your smartcard –
Complete the form to request the SCR role addition to your smartcard. We will then approve the addition of the relevant roles to your smartcard with your local Registration Authority (RA). The RA will process this in line with the local organisation’s service level agreement.
For an SCR governance person (SGP), (formerly known as a privacy officer)
1. Check your smartcard – Make sure your smartcard is working. Put the smartcard in the reader and follow the instructions to check it isn’t locked and that you know the PIN. Contact your local Registration Authority (RA) for help with problems, or if you don’t have a smartcard.
2. Complete the online SGP training – SGP training is available on the NHS Digital website.
3. Request the SGP role for your smartcard – Complete the form to request the SGP role addition for your smartcard. We will then approve the addition of the relevant roles to the smartcard with your local Registration Authority (RA). Your RA will process this in line with the local organisation’s service level agreement.
For a new pharmacy needing to go live with SCR
1. Appoint an SCR Governance Person (SGP), (formerly known as a privacy officer) – Every organisation needs to appoint at least one member of staff to be the SGP. It is recommend that a minimum of two people are appointed.
2. Implement Standard Operating Procedures (SOPs) covering SCR use and SGP monitoring tasks – All other SOPs impacted by SCR e.g. Flu Vaccination, MURs should be updated at the next opportunity.
3. Complete the online Acceptable Use Agreement (AUA) – An acceptable use agreement is needed for each pharmacy site.
4. Check SCR works with your system –
(a) Test access to SCR – Once the SCR Role Based Access Codes (RBACs) have been added to your users’ smartcards, test access to the spine portal (which provides access to SCR) at each computer. Add the url to the desktop or favourites to make access easier. Then use a test NHS patient number e.g. 9990252955 to check everything is working correctly.
(b) Check technical requirements – To use SCR, your system needs to be compliant with the NHS standard system settings, specified in the Warranted Environment Specification This is probably already the case. You or your system supplier can check this. System suppliers should be familiar with the WES and can help to ensure that NHS and other key software can continue to run alongside each other.
(c) Troubleshooting technical requirements – If you are using older versions of software, the system might not be fully compliant. If your system supplier, or a software provider, recommends using settings outside of the WES, you may want to discuss with them whether adjustments can be made so that all your hardware, systems, and software can comply with the WES. Technical issues should be forwarded to your pharmacy system supplier helpdesk.
5. SGP – start routine monitoring of SCR access – Read more on the role of the SGP.
