Information Sharing in Safeguarding: When Confidentiality Must Give Way to Protection

Information sharing is one of the most misunderstood areas of safeguarding practice. Staff are often uncertain whether they are “allowed” to share information, particularly where consent is unclear or refused. In safeguarding, the question is not whether information can be shared, but whether it should be shared, when, and with whom. Providers must balance confidentiality against protection, using defensible judgement aligned to information sharing, confidentiality and proportionate disclosure and the specific types of abuse or harm being considered.

Confidentiality Is Not Absolute in Safeguarding

Confidentiality is a fundamental principle of care, but it is not absolute. Where there is a risk of abuse, neglect or serious harm, safeguarding duties can lawfully override confidentiality. This includes situations where:

  • there is risk of significant harm to the person or others
  • a crime may have been committed
  • others may be at risk if information is withheld

Providers must ensure staff understand that confidentiality protects people — it should never be used to shield risk.

Lawful Bases for Sharing Information Without Consent

In safeguarding contexts, information may be shared without consent where it is:

  • necessary to prevent or detect crime
  • required to protect a person from harm
  • needed to safeguard others at risk
  • required by law or regulatory duty

The key is proportionality: sharing the minimum necessary information with the appropriate agency.

Operational Example 1: Disclosure Without Consent Due to Exploitation Risk

Context: A person discloses concerns about being pressured for money but explicitly asks staff not to tell anyone.

Support approach: Respect the person’s wishes while assessing wider risk.

Day-to-day delivery detail: Staff record the disclosure verbatim, assess indicators of exploitation, and escalate internally. Management decide that the level of risk meets safeguarding thresholds and share relevant information with the local authority safeguarding team, documenting why consent was overridden and what information was shared.

How effectiveness or change is evidenced: Records show the decision rationale, proportional disclosure, and follow-up actions that reduced risk.

What Proportionate Disclosure Looks Like in Practice

Proportionate disclosure means:

  • sharing only relevant facts, not opinion or speculation
  • limiting access to those who need to know
  • being clear about purpose and risk
  • recording why information was shared

Oversharing can be as problematic as withholding information, particularly in multi-agency contexts.

Operational Example 2: Sharing Information With Police

Context: An incident occurs that may constitute a criminal offence.

Support approach: Immediate protection and lawful disclosure.

Day-to-day delivery detail: Staff preserve evidence, avoid contaminating accounts, and share factual information with police. Personal details unrelated to the incident are withheld. The person is supported and informed of what has been shared and why.

How effectiveness or change is evidenced: Clear boundaries are visible between safeguarding support and criminal investigation processes.

Operational Example 3: Internal Information Sharing Across Teams

Context: Different staff teams hold fragments of risk information.

Support approach: Controlled internal disclosure.

Day-to-day delivery detail: Managers ensure risk-critical information is shared across shifts and services via structured handover and secure systems, while limiting unnecessary access to sensitive personal history.

How effectiveness or change is evidenced: Consistent staff responses and reduced missed escalation.

Commissioner Expectation

Commissioners expect providers to demonstrate confident, lawful information sharing that protects people without breaching privacy unnecessarily. Poor practice includes both over-cautious non-sharing and uncontrolled disclosure.

Regulator Expectation (CQC)

CQC expects safeguarding decisions to show clear rationale. Inspectors look for evidence that confidentiality was considered, risks assessed, and information shared proportionately to protect people.

What Good Practice Looks Like

Strong providers embed:

  • clear information-sharing policies
  • decision prompts for consent and override
  • recording standards for rationale
  • staff confidence through training and supervision

When staff understand that safeguarding drives information sharing — not fear — outcomes improve.

Latest from the knowledge hub

⬅️ Return to Knowledge Hub Index