The Good Practice Guidelines (GPG) are a series of informational documents created by the NHS CFH Infrastructure Security Team (IST) which provide good practice advice in technology specific areas of Information Security and Information Governance.

Each Good Practice Guideline is intended to support Department of Health Policy and NHS CFH Information Governance requirements for NHS organisations and suppliers.

Organisations which have an N3 connection can access the Infrastructure Security Team website which provides the GPG's and other associated Information Security guidance.

Organisations which do not have an N3 connection can contact cfh.infosecteam@nhs.net to request copies of GPG's and other associated Information Security guidance.

Third party organisations which require access to the GPG's for IGSoC compliance can access the 'secure repository' by requesting access from the igsoc@nhs.net.