Data Protection Impact Assessments

What is a DPIA?

A Data Protection Impact Assessment (DPIA) is a process to help identify and minimise the data protection risks of a project.

We conduct a DPIA for processing data when there is likely to be a high risk to the privacy individuals, for example as part of a tendering process, procuring new technology, new models of working, etc.

For further information please see the Information Commissioner’s Office (ICO):

DPIA Register

Here is a register of our current DPIAs:

[To follow - Under Review]

If you have any queries about DPIAs or would like to view any documents please make a request through shropcom.dataprotection@nhs.net