Data Privacy Impact Assessments and Privacy by Design

To make sure our patients information is secure we (the Trust ) follow a privacy by design approach to make sure your information and privacy is a top priority for any new system. We use a process known as a Data Privacy Impact Assessment also called a DPIA for screening  new systems (or significant changes to existing systems)  to highlight any risks to confidential data. Where a DPIA highlights risks these are appropriately managed and action taken to ensure the risk is removed or significantly reduced.

The DPIA is a tool recommended by the Information Commissioners Office (ICO) to help us make sure your data is used properly, legally and securely. You can find out more about the ICO at

You can find our privacy notice here.

A summary of DPIA’s for new systems (since May 2018) used by the Trust is available in this document: DPIAs published.pdf