Is Your Organization Ready for the New DSPT Requirements?

Protect patient data and meet NHS compliance with confidence

In September 2024, the NHS Data Security and Protection Toolkit (DSPT) underwent a major update to align with the Cyber Assessment Framework (CAF) and today’s evolving cyber threat landscape. With 47 outcomes to demonstrate, staying compliant is more complex — and more critical — than ever.

So how do you go beyond just ticking boxes and actually secure your systems and patient data?

Get started!

This whitepaper gives you practical insights to help your organization stay compliant, reduce cyber risk, and streamline audits — so you can focus on what really matters.

A clear breakdown of the updated DSPT requirements and how they align with CAF
How to effectively detect and respond to cyber threats using a SIEM platform
Who Logpoint is and how we safeguard data
How to reduce the cost and effort of audits with centralized, automated compliance reporting

What is CAF?

The Cyber Assessment Framework (CAF), developed by the UK’s National Cyber Security Centre (NCSC), offers a best-practice approach for assessing and enhancing the cyber resilience of essential services. Widely adopted by public sector bodies and critical infrastructure providers, CAF helps strengthen an organization’s ability to detect, respond to, and recover from cyber threats.

Logpoint supports organizations aligning to CAF by:

Delivering centralized visibility across IT infrastructure through advanced log management

Enabling real-time threat detection, incident response, and alerting through integrated automation capabilities

Supporting ongoing monitoring and reporting aligned with CAF principles, particularly Objectives C1 and C2 related to security monitoring and proactive event discovery

Enhancing internal security operations with out-of-the-box dashboards and customizable compliance reports

What is DSPT?

The DSPT is a mandatory self-assessment tool for all organizations accessing NHS patient data or systems. It ensures that providers follow strong data security practices and comply with the National Data Guardian’s 10 data security standards.

Logpoint helps organizations meet DSPT expectations by:

Securing logs in a tamper-proof format with clear audit trails and role-based access

Enabling root cause analysis and rapid incident response following security events

Providing visibility into access control, privileged account use, antivirus coverage, and more

Supporting detailed evidence and reporting for DSPT submissions and governance oversight

Public Sector Fair Pricing Model

Understanding the financial and operational constraints faced by public sector organizations, Logpoint delivers a Public Sector Fair Pricing Model — a flexible enterprise license purpose-built for Local Government, Education, and NHS institutions.

This model enables organizations to:

Deploy Logpoint across their entire IT estate without restrictions on log volume, user count, or deployment scale
Access the full range of SIEM and automation capabilities needed for effective threat detection, response, and compliance reporting
Operate with predictable, transparent licensing, aligned with public sector funding cycles and planning requirements

With Logpoint, public sector teams can confidently adopt a proactive, scalable, and sustainable approach to cybersecurity — enabling compliance, resilience, and long-term operational assurance.