Home News | Events | Publications and resources | Consultations | Contacts

Would you like to receive updates about this content?

ContactPoint: access and security

How will users access ContactPoint?

Authorised users will be able to access ContactPoint in three ways - through:

  • A secure web link

  • Some existing case management systems

  • Another authorised user (where appropriate IT is unavailable) 

Wherever possible ContactPoint will be automatically updated from existing systems, avoiding the need for practitioners to enter information on a separate system. It will not be possible for an authorised user to access case management systems or to see case data held by another agency on ContactPoint.

How will you ensure ContactPoint is secure?

Security is of paramount importance in the development of ContactPoint, and will be reflected in the statutory guidance and staff training that will govern the operation of ContactPoint. A number of stringent measures will be in place to ensure security, including:

  • Access to be restricted to those who need it as part of their work.

  • Everyone with access to be subject to stringent security checks, including enhanced Criminal Records Bureau clearance.

  • A minimum of 'two-factor' authentication will be required for access.

  • All users will be trained in the importance of good security practice.

  • Users must be able to state a reason for accessing a record.

  • Every access to a child's record will be detailed in the audit trail. This will be regularly reviewed.

  • Sanctions will be in place for any misuse. These sanctions can include, if appropriate, fines or imprisonment under the provisions of the Data Protection Act and Computer Misuse Act.

See the ContactPoint Security Policy below for further information.

The design and implementation will be reviewed by independent security experts throughout development, and periodically audited during operation. ContactPoint security procedures were independently assessed at the end of 2007. View the findings and the Government's response below.

ContactPoint Security Policy - February 2007

ContactPoint Security: Deloitte's independent review
This link contains documents about the scope, findings and Government response to the Deloitte review.


Back to top

This page was last updated on 21 February 2008

I would like to receive updates about:



Delivering services
Strategy and governance
Information for parents
Children and young people