Data Protection Impact Assessments (DPIAs)

Under GDPR, it is the responsibility of our Trust, not just to be compliant with the law, but to be able to actively demonstrate compliance. One of the key ways of demonstrating compliance with Data Protection by Design is through the use of DPIAs.

What is a DPIA?

A DPIA is a screening tool which is designed to help organisations systematically analyse, identify and minimise the data protection risks of a project or plan. It allows issues to be recognised as early as possible and addressed appropriately, which demonstrates that data protection has been considered throughout the development of any new or changes to existing activities.

The list below shows DPIA’s which have been undertaken and approved by the Trust during 2019/20:

09/01/2019Implementation of Power BI
14/02/2019Scanning Project – Ward Documentation
21/02/2019Scanning Project – Child Records
29/05/2019Message Text Reminder Service – Theatre Procedures and Endoscopy
26/06/2019Imaging Exchange Portal
12/09/2019Office 365 Pilot
12/09/2019Pharm outcomes Project
12/09/2019Neonatal FaceTime Initiative
09/01/2020Video consultation
22/07/2020Overarching DPIA for the EPR
22/07/2020CPAP Remote Monitoring
22/07/2020CareFlow Connect
22/07/2020Medtronic Care Link Pro
22/07/2020Florence (Flo) text messaging service