Data privacy impact assessments

In accordance with the General Data Protection Regulation (GDPR) Article 35, DPIAs are mandatory for new systems and procedures where personal information is being processed.

These checklists are used by the WSFT information governance team when assessing the processing of personal information for data protection/confidentiality compliance.

They are approved by the Trust’s IT team and the Information Governance Steering Group.