skip to main content

Data Protection Impact Assessments

In order to comply with the law, the Trust has to complete DataProtection Impact Assessments (DPIA). This is a process which helps assess privacy risks to individuals and identifies the legal basis for the collection, use and disclosure of information, known as processing.         

All new projects, initiatives and processes that involve using or sharing personal information will require a completed Data Protection Impact Assessment  at the initial stages and prior to any procurement decision being made. All Data Protection Impact Assessments when completed will be submitted to the Data Protection Officer and/or the Information Governance Group for approval.    

Page Comments