Data Protection Impact Assessments are an integral part of taking a “privacy by design” approach. Data Protection Impact Assessments are a tool that The Christie NHS Foundation Trust use to identify and reduce the privacy risks of projects.

Projects could include:

  • Introduction of a new paper or electronic information system for storing and accessing personal data
  • Update or revision of a key system that might alter the way in which the organisation uses, monitors and reports personal data
  • Changes to an existing system where additional personal data will be collected
  • Proposal to collect personal data from a new source or for a new activity
  • Using existing data for a new and unexpected purpose
  • Plans to outsource business processes involving storing and processing personal data
  • Plans to transfer services from one provider to another that include the transfer of information or information systems
  • Changes to or introduction of new information sharing agreements
  • A new surveillance system

A Data Protection Impact Assessment can reduce the risks of harm to individuals through the misuse of their personal information. It can also help us to design more efficient and effective processes for handling personal data.

Below is a list of Data Protection Impact Assessments from the last 12 months that the Trust has undertaken to ensure continued consideration is given to the privacy of its patients and staff:

  • DPIA89 Video Consultations
  • DPIA90 Allocate - Eroster
  • DPIA91 Firetext
  • DPIA93 Graphnet Rollout
  • DPIA96 Interpreter Now Application (Covid-19)
  • DPIA98 Cosmic-19 Patient Wearables
  • DPIA100 Radiotherapy Reporting Screening Tool (Covid 19)
  • DPIA101 Remote data verification for clinical trial monitors (Covid 19)
  • DPIA102 Staff Covid Testing (Covid-19)
  • DPIA105 Aria Off Site Back Up
  • DPIA106 Dis-CoV-er Trial
  • DPIA111 Staff and Staff Household Testing for Coronavirus
  • DPIA112 Sample service for nutrionall supplements for outpatients
  • DPIA114 Estates reconfiguration - Theatres 8 and 9
  • DPIA115 Histopathology home reporting
  • DPIA116 Patient entertainment system
  • DPIA117 PACs/VNA

If you would like any further information in relation to the Data Protection Impact Assessments undertaken by the Trust, please contact the-christie.information.governance@nhs.net