Professional Documents
Culture Documents
Version
Date ratified
Date issued
Review date
Electronic location
Management Policies
Date ratified
07/03/11
04/02/13
Brief Summary of
Changes
Links to RM Strategy
explicit
Links between Risk
Register and Board
Assurance Framework
clarified
Responsibilities
expanded
Author
Head of Risk Management
and Legal Services
Deputy Director of
Nursing/Head of Patient
Safety
Page 1 of 20
CONTENTS
QUICK REFERENCE GUIDE.............................................................................................................. 3
1.
INTRODUCTION........................................................................................................................... 4
2.
PURPOSE.................................................................................................................................... 4
3.
SCOPE......................................................................................................................................... 4
4.
DEFINITIONS............................................................................................................................... 4
5.
6.
PROCESS.................................................................................................................................... 7
7.
TRAINING REQUIREMENTS.....................................................................................................10
8.
9.
APPENDICES:
Appendix A: GUIDANCE FOR ASSESSING THE RISKS
Appendix B: RISK ASSESSMENT AND ACTION PLAN
Appendix C: RISK REGISTER
Appendix D: GUIDANCE ON COMPLETION OF THE RISK REGISTER
Appendix E: List of Trust Specialist Advisers
Page 2 of 20
From walking around your workplace and looking afresh at what could reasonably be
expected to cause harm. E.g. change in practice / new equipment
Business and Service Delivery Plans
Adverse Incident reporting
Serious Incidents
Complaints
Claims
Health & Safety Risk Assessments
External Assessment/Audit including: Care Quality Commission, Clinical Negligence
Scheme for Trusts (maternity), National Health Service Litigation Authority Risk
Management Standards, Internal Audit, Audit Commission
National Confidential Enquiries, National Service Frameworks, Recommendations from
other external high level enquiries and reports
Page 3 of 20
1. INTRODUCTION
Portsmouth Hospitals NHS Trust accepts that some of its activities may, unless properly
controlled, create risks to patients, staff, visitors, contractors and others, and will endeavour to
take all reasonably practicable measures to reduce these risks to an acceptable level.
To achieve this, the Trust needs to understand its risks, how they are being controlled and
prioritised, whilst recognising the guidance provided by national bodies, existing legislation and
the Trusts Specialist Advisers
The broadest sense of harm and potential harm to the Trust, and its ability to deliver the quality
services to which it aspires, must be the focal point for this exercise.
2. PURPOSE
The purpose of this policy is to provide clear instructions on the identification of hazards and
the process and management of those hazards, with regard to risk assessment. This will
enable the Trust to actively monitor, manage, prioritise and develop a consistent approach to all
risk assessments. It will ensure:
This policy must be read in conjunction with the Risk Management Strategy which details the
overall framework for Risk Management within the organisation.
3. SCOPE
This policy applies to all permanent, locum, agency, bank and voluntary staff of Portsmouth
Hospitals NHS Trust, the MDHU (Portsmouth) and Carillion, whilst acknowledging that for staff
other than those directly employed by the Trust the appropriate line management or chain of
command will be taken into account. Whilst the policy outlines how the Trust will manage its
risks, implementation does not replace the personal responsibilities of staff with regard to
issues of professional accountability for governance.
In the event of an infection outbreak, flu pandemic or major incident, the Trust recognises
that it may not be possible to adhere to all aspects of this document. In such circumstances,
staff should take advice from their manager and all possible action must be taken to
maintain ongoing patient and staff safety
4. DEFINITIONS
Controls
The available systems and processes which help minimise the risk
Consequence The impact or outcome component of a risk, on a scale of 1 -> 5
Likelihood
Hazard
Risk
Page 4 of 20
Risk
Assessment
Risk Rating
Reactive
Risks
Proactive
Risks
Residual Risk
Rating
Risks that are identified before they cause an event, or that are being
looked for during the audit process
The remaining risk that exists following implementation of the proposed
measures or controls to reduce the risk
Responsible
Lead
The person with the responsibility for ensuring that actions to control the
risk are implemented
Be alert to risks and recognise their duty to report them through their line management
arrangements so that appropriate action can be taken.
Be aware of existing risk assessments related to their area of work and relevant procedures
or control measures to be adopted to reduce identified risks.
Recognise their duty under legislation to take reasonable care for their own safety and the
safety of others that may be affected by the Trusts business
They have undertaken appropriate training and are familiar with, and use, the correct
methods of risk identification and assessment as set out in this policy
Any identified risk issues are communicated through the line management system
Be aware of risk assessments within their area of work and relevant procedures or control
measures to be adopted to reduce identified risks.
Report adverse events as per Adverse Events and Near Miss Policy
Page 5 of 20
All departments must have a risk register. The Departmental Manager is responsible for
ensuring risks are identified, assessed, recorded, reported, monitored, and reviewed i.e.
managed within their area using the approach described in this policy and procedure, in
conjunction with the Clinical Service Centre (CSC) Management Team and relevant risk
specialists e.g. Health and Safety Advisor. This is an ongoing process and should include
both proactive and reactive situations.
It is the responsibility of each CSC Management Team to ensure that effective risk
management is taking place across their Directorate.
All CSCs are responsible for maintaining a CSC Risk Register - identifying overarching risks,
clinical, non-clinical, strategic, operational, and those associated with projects and service
transformation (see also Quality Impact assessment process), which may cause damage to
individuals, the environment, impact on activity/quality, loss of reputation, and/or jeopardise
the strategic objectives.
CSC Management teams will review their CSC Risk Register on at least a quarterly basis at
the CSC Governance meetings.
They impart knowledge and use their expertise to help the assessment teams develop their
skills and awareness
Page 6 of 20
The Trust Board shall review the Board Assurance Framework (BAF) monthly and the Trust
Risk Register quarterly. The Trust Board is responsible for reviewing the effectiveness of
internal controls and sources of assurance, ensuring they are comprehensive and/or
sufficiently independent. The Trust Board is also responsible for assessing the level of
acceptable risk within the Trust Risk Register.
6. PROCESS
6.1 Purpose and Benefits
A risk assessment is no more than a careful examination of what, in your work, could
cause harm to staff, visitors, contractors and others, or affect the Trusts reputation, so
that you can weigh up whether there are enough precautions (controls) in place, or more
should be done to ensure that no one gets hurt, and the Trusts reputation is not affected.
The purpose of a risk assessment is to provide a systematic and methodical tool for
identifying risks associated with legal, moral and financial duties, removing them where
possible, or otherwise adopting all the control measures and precautions that are
reasonable and practical in the circumstances.
The greatest benefits may be obtained by making this a very positive process, by aiming
to produce assessments that are consistent, neat, clear and informative and thus provide
a practical and useful response for training and re-enforcing the safety message
throughout the Trust. Risk assessment is also a key priority of the Risk Management
Strategy, to help ensure that patients, staff and others can feel safe whilst either visiting,
or working in the Trust.
6.2
From walking around your workplace and looking afresh at what could
reasonably be expected to cause harm e.g. change in practice / new
equipment
Business and Service Delivery Plans
Adverse Event reporting
Serious Incidents
Complaints
Claims
Health & Safety Risk Assessments
Page 7 of 20
6.2.2
Once the risk assessment has been undertaken an action plan to address the
identified problems must be completed
6.2.3
Page 8 of 20
6.2.4
6.3.2
6.3.3
6.3.4
Page 9 of 20
assurance across all 3 documents. The Risk Coordinator coordinates this process
with the risk owners, on behalf of the Risk Assurance Committee and Trust Board.
6.4 Acceptable Risk
The Trust acknowledges that some of its activities may, unless properly controlled create
organisational risks, and/or risks to staff, patients and others. The Trust will therefore make all
efforts to eliminate risk or ensure that risks are contained and controlled so that they are as low
as reasonably practical.
However it is not always possible to reduce an identified risk completely and it may be
necessary to make judgments about achieving the correct balance between benefit and risk. A
balance needs to be struck between the costs of managing a risk and the benefits to be gained.
A decision must therefore be made regarding the level which a risk would be deemed
acceptable to tolerate. A risk is considered acceptable when there are adequate control
measures in place and the risk has been managed as far as is considered to be reasonably
practicable. Tolerated risks should be brought to the attention of RAC through CSC risk
registers or the Trust Risk Register on an annual basis.
Where a risk has been reduced to the point where the cost of further controls to reduce the risk
outweigh the benefit they may provide, it may not be considered reasonably practicable to
implement those controls. However where risk controls are available it is the duty of the
organisation to demonstrate that the cost of implementation outweighs the benefit, or, that
alternative effective control measures have been implemented. Risks requiring a cost benefit
analysis must be fed into the Trust Risk Register for wider debate and decision on
acceptability at RAC.
7. TRAINING REQUIREMENTS
7.1
All staff who undertake risk assessments should undergo training relevant to their
involvement in the process. Training is delivered in a variety of ways.
Mandatory corporate induction and essential skills updates, which includes
reference to risk assessment training
Health & Safety e-learning
Health & Safety Risk Assessment Workshops
IOSSH Training, which is held as and when appropriate
Departmental/locally delivered update training
7.2
All training is monitored via the Electronic Staff Records from which the Learning and
Development Team provide a monthly heatmap to each CSC to enable monitoring of
compliance
7.3
Compliance is further monitored through the CSC performance reviews with the
Executive Teams
Page 10 of 20
Internal
This policy is applicable to clinical and non-clinical issues: it is of great importance that it should
be read in conjunction with other appropriate Trust strategies and policies. The following
documents are a good starting point:
All Strategies and Policies may be accessed via the Trust Intranet. If you do not have access to
the Intranet, please ask your line manager
Page 11 of 20
Lead
Deputy Director of
Nursing/Head of
Patient Safety
o Description of risk
o Risk score
o Risk treatment plan
Tool
Audit
of
selection of
Frequency of Report
of Compliance
random
10 Specialty risk
registers
Five CSC risk
registers
Five risks from Trust
risk register
Annually
Reporting arrangements
Page 12 of 20
Deputy Director of
Nursing/Head of Patient
Safety / CSC Heads of
Nursing
Appendix A
GUIDANCE FOR ASSESSING THE RISKS
The risk matrix below is simple to use and designed to assist you in assessing risk in a consistent
and systematic way: just follow each step of the process
Step 1: If the risk occurred what are the likely consequences (C) to person(s) or the Trust? Use the
table below to grade the consequence
CONSEQUENCE
SCORE (1 5)
Injury (physical /
psychological)
1
Insignificant/None
(Green)
Adverse event leading to
minor injury not requiring
first aid and managed
satisfactorily on the ward
2
Minor
(Yellow)
Minor injury or illness, first aid
treatment needed
Staff sickness <3 days
3
Moderate
(Amber)
RIDDOR / Agency reportable.
Adverse event which impacts
on a small number of people
4
Major
(Red)
Major injuries or long term
incapacity / disability (e.g. loss
of limb)
5
Extreme
(Red)
Incident leading to death or
permanent incapacity. Ev
which impacts on large num
of people
Bruise/graze
(no time off work)
Additional
Guidance
Complaints /
Claims
Interruption in a service
which does not impact on
the delivery of care or the
ability to continue to
provide the service
Trust would not encounter
any significant
accountability implications
Small loss
Small number of
recommendations which
focus on minor quality/
process improvement
issues
Additional
Guidance
Quality of the
patient
experience /
outcome
Staffing and
Competence
Service /
Business
Interruption
Projects
/ objectives
Financial
Inspection / Audit
Death, paralysis
Page 13 of 20
Adverse
Publicity /
Reputation
N/A
1-2
3-15
No. Of Persons
Affected
16-50
>50
Step 2: Look at what is being assessed and ask the question: What is the likelihood (L) of harm to
persons or the Trust, given the current controls/precautions in place? Use the table below to grade
the likelihood.
LIKELIHOOD
DESCRIPTOR
DESCRIPTION
Rare
Unlikely
Possible
Likely
Highly likely
Step 3: To obtain the risk rating, multiply the consequence x the likelihood
CONSEQUENCE
LIKELIHOOD
1 Rare
Not expected to occur
2 Unlikely
Occurs infrequently
3 Possible
Once or twice a year
4 Likely
Hazard will occur but is
not persistent.
There are no issues of
custom and practice.
5 Certain
Constant threat is
custom and practice
1
Insignificant
2
Minor
3
Moderate
4
Major
5
Extreme
1
LOW
2
LOW
3
LOW
2
LOW
4
MODERATE
6
MODERATE
3
LOW
6
MODERATE
9
HIGH
4
MODERATE
8
SIGNIFICANT
12
HIGH
5
MODERATE
10
HIGH
15
EXTREME
4
MODERATE
8
HIGH
12
HIGH
16
EXTREME
20
EXTREME
5
MODERATE
10
HIGH
15
EXTREME
20
EXTREME
25
EXTREME
Risk Ranking
These are applied for purposes of ranking the risk for use and for reporting to the National Patient
Safety Agency (NPSA)
Low (1 3)
Moderate Risk (4 6)
Page 14 of 20
Score
1-3
4-6
8-12
15-25
Page 15 of 20
Appendix B
RISK ASSESSMENT AND ACTION PLAN
TYPE (may be more than one type)
SOURCE OF RISK
Risk scores are calculated by
C = Clinical
F = Financial
L = Legal
Q&P = Quality /
Performance
Incident
Assessment
Escalated from
other risk register
CAS alert
Page 16 of 20
R = Reputation
SD = Service Delivery
Hospital Site
QAH/SMH
Date
Assessor
ASSURANCE MECHANISM /
MONITORING
(how are you going to monitor
whether your controls are
working)
IMPACT
FURTHER ACTIONS
REQUIRED TO ACHIEVE
PREDICTED (RESIDUAL) RISK
RATING
TARGET DATE
ACTIVE CONTROLS
ALREADY IN PLACE
(C X L)
RISK / HAZARD
DESCRIPTION
DATE OPENED
ID /
CQC
Ref
TYPE / SOURCE-
Dir/Dept/Specialty/Ward
Appendix D
GUIDANCE ON COMPLETION OF THE RISK REGISTER
SECTION
Ref No
COMMENTS
A number which allows the risk to be uniquely identified: this will inserted, once the risk
is placed on the register
Page 17 of 20
Type
Date
The date the risk was first placed onto the Register
Risk Description
A statement that provides a brief, unambiguous and workable description, which enables
the risk to be clearly understood, analysed and controlled
Consequence
Likelihood
Active Controls
Details of any actual controls already in place i.e. factors that are exerting material
influence over the risks likelihood and impact: the risk rating.
An effective control is one that is properly designed and delivers the intended objective /
mitigates the risk
Consequence: the impact should the risk occur - this score should take into
account the existing controls
Likelihood: the likelihood of the risk happening - this score should take into account
the existing controls
Further actions
Further action(s) required to be taken in order to eliminate, mitigate or control the risk
Progress Update
A brief update on progress made since the last review. NB: if no progress has been
made, do not make it up.
/
How you are going to monitor that the controls in place are effective in managing the
risk
Plus
Evidence that shows risks are being reasonably managed
Predicted Residual
Risk
The risk rating after the further actions have been implemented: expressed as the
product of the likelihood x the consequence
Target Date
Realistic date by which you consider the proposed actions will be completed
Monitoring
Assurance
Page 18 of 20
Responsible Lead
Responsible
Committee
The Committee which has responsibility for monitoring progress of the management of
the risk
Page 19 of 20
Appendix E
Specialist Adviser
Contact Details
Control of Infection
7700 6261
Falls
7700 6675
7700 3645
Manual Handling
7700 3642
Radiation Protection
7700 3299
Risk Management
7700 3479
Tissue Viability
7700 6985
Page 20 of 20