Shared drives are the digital backbone of most general practices. From HR policies to patient templates, rotas to complaints logs, they hold everything your team needs to run the business of healthcare. But without structure, naming conventions or access controls, your shared folders can quickly become an unmanaged sprawl - one that increases the risk of data breaches, lost documents, or staff using outdated files. 

Information governance isn’t just about cyber attacks or policy audits. Sometimes the biggest threats come from something as simple as someone opening the wrong folder, emailing the wrong version, or deleting a document by mistake. Here’s how to get your shared drive in order - before CQC, your DPO, or a breach forces your hand. 

Por que a organização de unidades compartilhadas é importante

A messy shared drive is more than a nuisance. It creates real risks: 

• Modelos desatualizados used in patient care. 

• Confusão da equipe about where to save or find files. 

• Arquivos confidenciais left in open-access folders. 

• Múltiplas versões of policies in circulation. 

• Dificuldade em responder to SARs or FOI requests. 

Mais importante ainda, se ocorrer um incidente - como o envio da carta errada ou um ex-funcionário acessando documentos restritos - você precisa demonstrar que medidas razoáveis foram tomadas. Organizar seu drive compartilhado é uma maneira prática e de baixo custo de reduzir o risco de informações e aumentar a confiança da equipe.

Not sure whether your drive is at risk? Look for these red flags: 

• Files saved to random or personal folders. 

• Old, unused documents from years ago. 

• No clear folder structure or naming conventions. 

• Documents with names like “FINAL FINAL v3.docx”. 

• Staff unsure where to save or find key items. 

• Passwords or patient data stored in unprotected formats. 

If any of these apply to you, it’s time to tidy up - before something goes wrong. 

1. Faça uma auditoria do que você possui 

Before you start reorganising, get a clear picture of what’s already there. Use your system’s file explorer or a tool like TreeSize or WinDirStat to scan for: 

• File types (for example, spreadsheets, PDFs, images). 

• Arquivos e pastas maiores.

• Duplicate or outdated files. 

• Files with potentially sensitive information. 

You may need help from IT support for this step - especially if you’re using a networked or cloud-based system. 

2. Crie uma estrutura de pastas clara 

Start with broad categories, then build down. For example: 

• Clinical templates. 

• HR and staffing. 

• Policies and protocols. 

• Governance and audit. 

• Patient leaflets. 

• Archived or legacy documents. 

Avoid overly complex nested folders - the deeper the structure, the harder it is to navigate. 

3. Defina convenções de nomenclatura 

Agree a standard way to name documents and folders. Consider: 

• Date format (for example, YYYY-MM-DD). 

• Version control (for example, v1, v2, FINAL). 

• Owner initials or team names if relevant. 

• Clear, concise titles - for example, “Complaints policy v2 2023”. 

Share this standard with all staff - and reinforce it regularly. 

4. Revisar permissões 

Check who has access to what. Not every member of staff needs access to everything. Make sure: 

• Sensitive files (for example, HR records, safeguarding notes) are restricted. 

• Shared folders have appropriate read/write settings. 

• Leavers’ access is removed promptly. 

Mantenha um registro de acessos ou uma lista de permissões como parte da sua documentação IG.

5. Arquivar ou excluir conteúdo antigo

Hold a “file amnesty” - ask staff to identify documents they no longer use. Set a review period (for example, “files not accessed in the last two years”) and either: 

• Archive to a secure, labelled folder. 

• Delete if no longer needed and not legally required. 

Be cautious with clinical or statutory records - check retention policies before deletion. 

6. Treine e envolva a equipe 

This process won’t work unless your team buys in. Provide: 

• A short guide to the new folder structure. 

• A quick reference sheet for naming conventions. 

• Drop-in support or a named contact for questions. 

• Regular reminders in team briefings. 

You might even assign team leads or “folder champions” to keep their sections tidy. 

Once your drive is in good shape, keep it that way: 

• Schedule a mini clean-up every six months. 

• Include file management in staff inductions. 

• Review access permissions quarterly. 

• Add document control to your IG calendar. 

• Remind staff: if in doubt, ask before creating or moving a file. 

Shared drives may not feel like a top IG priority, but they’re where risk and routine collide. The more organised your system, the easier it is to work safely, respond to data requests and avoid accidental breaches. Sorting your drive won’t take forever - but ignoring it might. A few hours now could save you days of stress later.