Data Protection Impact Assessments (DPIAs)

Under GDPR, it is the responsibility of our Trust, not just to be compliant with the law, but to be able to actively demonstrate compliance. One of the key ways of demonstrating compliance with Data Protection by Design is through the use of DPIAs.

What is a DPIA?

A DPIA is a screening tool which is designed to help organisations systematically analyse, identify and minimise the data protection risks of a project or plan. It allows issues to be recognised as early as possible and addressed appropriately, which demonstrates that data protection has been considered throughout the development of any new or changes to existing activities.

The list below shows DPIA’s which have been undertaken and approved by the Trust during 2019/20:

Date Title
09/01/2019 Implementation of Power BI
14/02/2019 Scanning Project – Ward Documentation
21/02/2019 Scanning Project – Child Records
29/05/2019 Message Text Reminder Service – Theatre Procedures and Endoscopy
26/06/2019 Imaging Exchange Portal
12/09/2019 Office 365 Pilot
12/09/2019 Pharm outcomes Project
12/09/2019 Neonatal FaceTime Initiative
09/01/2020 Video consultation
09/01/2020 Payroll
09/01/2020 Badgernet
09/01/2020 Docman
22/07/2020 Overarching DPIA for the EPR
22/07/2020 CPAP Remote Monitoring
22/07/2020 CareFlow Connect
22/07/2020 Medtronic Care Link Pro
22/07/2020 TotalMobile
22/07/2020 Florence (Flo) text messaging service