Local government candidate diversity survey 2022: data protection impact assessment

This data protection impact assessment (DPIA) reports on and assesses against any potential data protection or privacy impacts as a result of the running of the 2022 local government candidate diversity survey, and the data processing undertaken as part of the project.


3. Description of the project

3.1 Description of the work:

The 2022 local government candidate diversity survey

The 2022 local government candidate diversity survey (2022 LGCDS) is a non-mandatory survey which asks all candidates standing for election at the 2022 local council elections to answer questions on their demographic characteristics, previous experience and any caring responsibilities they may have.

Benefits of data

The purpose of collecting the 2022 LGCDS data is broad. The information will be used to gain a better understanding of who stands, and who is elected to councils in Scotland. This is important to improve the quality and completeness of data on how representative candidates and elected members are of the communities they serve.

The 2022 LGCDS outputs will help equality groups and organisations such as Cosla and the Improvement Service have a better understanding of the diversity characteristics of candidates. It will allow such organisations to provide appropriate support to candidates and elected members, as well as inform ways in which they can encourage candidates from different backgrounds to stand in future elections.

Ownership

The Scottish Government will be the data controller and will be responsible for the governance of the project. The contractors, the APS Group and Questback, will be data processors. Their roles are noted in the governance section below.

Sharing 2022 LGCDS data

Aggregated data will be shared with the wider community on the Scottish Government website once appropriate disclosure control measures have been applied.

2022 LGCDS data will only be shared under data sharing agreements which include strict confidentiality restrictions covering how the data will be securely stored, limiting access to only people who require it, ensuring that data is deleted after use and that no publications identify individuals or individual businesses.

2022 LGCDS data could also be shared with academics and researchers on application to the Scottish Government statistics: request our data, which are then carefully assessed (special data requests). All applications follow a rigid approval process against a set of criteria, including researcher's accreditation and security of the research environment. Data would only be shared once appropriate disclosure control measures have been applied and information governance in place. No direct identifiers would be shared. The disclosure control methods will pseudonymise the data so that candidates are not identifiable from the 2022 LGCDS dataset itself.

Recontact Data

Data subjects will be asked if they would like to be sent a copy of the 2022 LGCDS report once published and/or if they would be willing to participate in possible follow up research. If they say yes to either option, they are asked to provide their email address. 'Consent' is the legal basis for processing this data. Respondents have the option to withdraw their consent at any time by contacting the Scottish Government analysts leading on the this project: diverserepresentationdata@gov.scot or calling 07973 949 256.

Once the online and paper questionnaires have been processed a separate file with direct personal identifiers for those who consent to providing their details for a report to be sent to them and/or potential follow-up research will be stored by the Scottish Government. A unique identifier will be allocated to each candidate in the main datasets and recontact dataset in order to facilitate potential future matching for the purpose of follow-up research. The dataset holding recontact information will only be accessible by the lead analysts in CIMA and all requests to use the recontact list for the purpose of potential future research will be considered on a case-by-case basis. Where relevant, further details of the processes and protocols around the recontact data are provided throughout this DPIA.

Governance

The governance arrangements of the 2022 local government candidate diversity survey are as follows:

1. Project management: Project is managed by a researcher and a statistician in the Constitution, International and Migration Analysis (CIMA) team, which provides analytical support to the Scottish Government's Elections policy team. Analysts within CIMA have responsibility for design and delivery of the survey, including development of all survey materials, liaising with users of the data (internal policy and equality colleagues and external users), production and quality assurance of data, and publishing the report and aggregated data on the Scottish Government website.

2. Scottish Government Central Analysis Division: the Head of Scottish Government Central Analysis Division and Chief Social Researcher has overall responsibility for the survey.

3. Policy lead: CIMA is undertaking the survey on behalf of the Elections Policy Team, who are the policy leads for the work.

4. Stakeholders: The Electoral Management Board (EMB) and Electoral Commission (EC) have contributed to the development of the project and will help to ensure the survey reaches all candidates including putting the links to the paper and online questionnaire on their websites. Returning Officers will disseminate the diversity questionnaire, information leaflet and prepaid return envelopes with candidate nomination packs.

COSLA and the Improvement Service have provided endorsement of the project, and logos for survey materials.

A range of equality stakeholders helped to develop the proposals for the new data collection on the diversity of candidates and elected members in Scotland.

A Diversity in political representation in Scotland: data improvement project proposal paper proposing a data collection during the nomination stage was published in December 2021. Stakeholders were invited to provide comments on these proposals. A range of feedback was received from councils, academics and other stakeholders, which informed the final questionnaire and survey approach. We will continue to work with stakeholders to encourage participation in the survey, and when we come to reporting on the data.

5. Contractors: The APS Group are the Scottish Government's publication contractor and are printing and delivering survey materials to Returning Officers at the 32 council offices in Scotland. The APS Group will also act as data processors for the Scottish Government for this survey. APS will receive posted completed paper questionnaires, undertake data entry, and securely transfer data files to the Scottish Government.

Questback provide the online platform used for the survey and will therefore also be data processors for the Scottish Government for this survey. Responses submitted online will be securely stored in a password protected account on the platform. Data files of the survey responses will then be securely downloaded to a restricted access Scottish Government electronic file, and deleted from Questback.

Planning mechanisms

Planning is undertaken by the lead analysts in the CIMA team within the Scottish Government.

Reporting mechanisms

The main release of 2022 LGCDS data will be through a publication on the Scottish Government website which will be accompanied by aggregate data tables as well as a technical publication. Within the publication we will:

Present the diversity characteristics of candidates and elected members;

Compare diversity characteristics of candidates and elected members with Scotland's population;

Compare the diversity of successful and unsuccessful candidates at the 2022 election;

Provide intersectional analysis where possible; and

Compare the profile of new candidates and elected members with those who have stood / served as elected members previously.

Data tables accompanying a publication will comply fully with data protection laws and disclosure controls will be applied to all data before its release. Aggregated national-level data will be provided by protected characteristic. Aggregated national-level data will be provided by protected characteristic. Data on some protected characteristics (e.g. age, sex) may be able to be broken down by local authority, but where numbers of individuals with certain characteristics or combinations of characteristics is small, this will not be provided for data protection reasons.

A third party may be contracted by the Scottish Government to analyse and write up the findings of the survey before publishing on the Scottish Government website following the results of the election. If data is shared with a third party, only pseudonymised data would be shared.

Data Breaches

In terms of data breaches which affect personal data/privacy:

- within Scottish Government – data breaches would be reported to the 2022 LGCDS project managers: and the general Scottish Government reporting process would be followed.

- by the 2022 LGCDS contractors – each organisation operates a security incident recording system and any breaches experienced would be communicated immediately to the Scottish Government, who would in turn follow the internal processes as appropriate.

- by research organisations / researchers who obtain data through Data Sharing Agreement (DSA) – datasets provided are generally disclosure controlled to minimise the risk of individuals being identified. However, if a data breach with an impact on data protection/privacy were to take place the procedures set out in the 'Management of a security incident' section of the DSA would be followed. This includes immediately notifying the Scottish Government.

Risk Management

Managing risk is essential to the successful operation of any project. Project risks refer to the potential for project objectives to be adversely affected by issues that are related to the implementation of an individual project or to specific features of a project that make it more risky than other projects. After a careful risk assessment, the project as a whole is judged to be low risk. Further information on risk is contained in Section 7 – 'risks identified and appropriate solutions or mitigation actions proposed'.

The major project risks are low response rate, (questionnaire and response) errors and data processing errors.

There are always leakage risks when dealing with personal data. Appropriate measures are being taken and will be continually reviewed to ensure personal data stays confidential, for example:

- access to 2022 LGCDS data within SG, APS and Questback will be restricted to named individuals who are actively working on the project.

- when datasets are transmitted between APS and the Scottish Government, a secure site will be used, with access restricted to named individuals.

-responses submitted online will be securely stored in a password protected account on the platform. Data files of the survey responses will then be securely downloaded to a restricted access Scottish Government electronic file, and deleted from Questback.

- once the Scottish Government receives the data, each candidate will be assigned a unique identifier. The names and email addresses will then be removed from the data before the diversity data is analysed and stored separately. While this unique identifier can be (and needs to be) linked back to the data, the linking information is held separately and only used where necessary.

-data tables accompanying a publication will comply fully with data protection laws and disclosure controls will be applied to all data before its release.

3.2 Personal data to be processed.

Variable Data Source
Name 2022 LGCDS Questionnaire (to enable analysis of both candidates and elected councillors – stored separately from main survey data).
Type of candidate 2022 LGCDS Questionnaire
Age 2022 LGCDS Questionnaire
Sex/Gender 2022 LGCDS Questionnaire
Gender reassignment 2022 LGCDS Questionnaire
Sexual orientation 2022 LGCDS Questionnaire
Disability/ long term health condition 2022 LGCDS Questionnaire
Ethnicity/race 2022 LGCDS Questionnaire
Religion or belief 2022 LGCDS Questionnaire
Email address (only if candidates select that they want to be sent a copy of the report and/or would be willing to participate in possible follow up research) 2022 LGCDS Questionnaire (for recontact/follow-up research – stored separately from main survey data).

3.3 Describe how this data will be processed:

Diversity questionnaire

Diversity questionnaires will be handed out to all candidates at the 2022 local government elections. In 2017, there was around 2,600 candidates.

It is important to note that the voluntary nature of the survey is key from an ethical perspective, but consent is not the basis on which the data are processed. The privacy notice highlights that the data is being collected and processed in the public interest.

Candidates can respond to the survey online or on paper (returning by post).

Paper questionnaires will be posted (using prepaid reply envelopes) to APS Group, 21 Tennant Street, Edinburgh, EH6 5NA for data capture.

The online questionnaire will be run via the Scottish Government's in-house survey tool Questback, using the "Strategy and External Affairs" licence. Each licence has its own private folder which can be accessed only by people logging in with the username and password set up for that licence. The Questback software is compliant with UKGDPR, with further information available on Questback Group Code of Privacy..

Data processing after nomination period

The APS Group will act as data processors for the Scottish Government and process all the data from the paper forms into electronic format (CSV file). APS will produce electronic scanned images of each form and a data file of all the information reported on the form. Once they have completed processing the data APS will upload the CSV files via a secure file transfer. APS will then dispose of the paper forms securely.

Questback will act as data processors for the Scottish Government and process (store) all the data from the online questionnaires. Responses submitted online will be securely stored in a password protected account on the platform. Only those who have access to the Strategy and External Affairs folder in Questback, such as relevant staff in CIMA team are able to access the data. Each Questback Licence in the Scottish Government has a Named Licence Holder, for this licence it is Sophie Ellison. Part of the role of Named Licence Holder involves keeping track of who has been given access to the log in details for that licence, and regularly changing the password so access is restricted to those with a legitimate need to access Questback to run a survey. All staff within the Scottish Government, and therefore everyone who can access a Questback Licence undertake and complete the mandatory Data Protection eLearning package every year. In addition analysts who use Questback work in line with the ethical and professional codes for their profession, such as the GSR Code (social researchers) and the Code of Practice for Statistics (statisticians). Data will be exported from Questback in a timely manner following the close of the survey, and stored in a private folder only accessible by the analysts responsible for analysing the data. The responses in Questback will be deleted after the data has been exported. This deletion will take place within 30 days of the survey closing.

On receipt of the images and data, from APS and Questback, the data from the survey will then be stored in a password protected file on a secure server until the election results. Access to these files will be restricted to a small number of analysts in the CIMA team.

Whilst survey responses and personal information (e.g. names and email addresses) are collected at the same time (i.e. in the questionnaire), these two sets of data will be separated after data has been processed (entered) from the paper and online forms. Once the Scottish Government has saved the data to the secure servers the data will be pseudonymised. In short, the questionnaire responses are contained within datasets which do not include direct personal identifiers, such as candidate names and email addresses, but do contain anonymised personal information for each candidate, like gender and age, for the purpose of analysis.

Names collected as part of the exercise will then be stored separately to candidates responses, which will only be linked to candidates name by a unique identifier. Names, email addresses and responses will be stored securely in accordance with data protection laws.

Data processing post-election

Following the results of the election, Scottish Government analysts will input whether each candidate was successful or unsuccessful in order to provide a breakdown of the diversity of all candidates, and the diversity of elected members at the 2022 elections.

Candidate names will then be then deleted within 30 days of the Scottish Government receiving the full dataset.

Data Analysis

The Scottish Government will use this data to create statistics to:

Compare diversity characteristics of candidates and elected members with Scotland's population;

Compare the diversity of successful and unsuccessful candidates at the 2022 election;

Provide intersectional analysis where possible; and

Compare the profile of new candidates and elected members with those who have stood / served as elected members previously.

Data tables will accompany the publication, which will comply fully with data protection laws. Aggregated national-level data will be provided by protected characteristic. Data on some protected characteristics (e.g. age, sex) may be able to be broken down by local authority, but where numbers of individuals with certain characteristics or combinations of characteristics is small, this will not be provided for data protection reasons.

A third party may be contracted by the Scottish Government to analyse and write up the findings of the survey before publishing on the Scottish Government website following the results of the election. If data is shared with a third party, only pseudonymised data would be shared.

See more information about how data sharing procedures will be followed in Section 3.1 above.

Retention

The information will be disposed of once conditions for it to be kept no longer apply, in accordance with Scottish Government policies.

>Names of the candidates will be deleted within 30 days of the Scottish Government receiving the full dataset.

> paper forms processed by APS will be deleted once scanned images of the forms are securely transferred to the Scottish Government

>The scanned images of the paper forms will be deleted within 30 days of the Scottish Government receiving the full dataset.

>Data files downloaded from APS and Questback to the Scottish Government's secure server, will be pseudonymised and retained indefinitely for statistical and research purposes.

Once the questionnaire is completed, as the survey data is processed under the public interest clause, the right to have the data erased does not apply for candidates. This is important for practical reasons relating to the main survey data as, once the survey data has been finalised and analysed, removing individuals responses would change the outputs and results derived from the data and therefore undermine the quality and integrity of the data as an evidence source. However, in practice, if candidates contact the Scottish Government within a few days of completing the questionnaire (i.e. before the relevant data are cleaned, processed etc.), it may be possible to remove them from the dataset and such requests are generally progressed in recognition of the voluntary nature of the survey. In practice, this is very rarely requested.

>Email addresses (recontact data), where supplied with consent to be sent a copy of the survey report, will be deleted once the survey report has been sent.

>Email addresses (recontact data), where supplied with consent to be contacted about potential future research, will be deleted after 6 years.

Whilst the right to erasure does not apply to the main survey data, candidates who express a willingness to be invited to take part in follow-up research provide their email address and are asked to provide explicit consent for such processing. Whilst these data are gathered in the same way as the main survey data (i.e. as part of the paper or online questionnaire), candidates are advised that they are free to withdraw their consent to be on the recontact list and therefore have their information on this dataset (i.e. personal contact details) erased at any time. Information on how to withdraw consent from this processing is provided within the privacy notice. Any withdrawal of consent for recontact does not impact on the right to continue to hold and process the main survey data for such candidates (i.e. the datasets without direct personal identifiers).

The recontact data will be correct at the time of collection but there is currently no mechanism in place for ensuring the data remains up to date into the future. As such, given that candidates may

change email addresses, the Scottish Government assesses that these datasets should be disposed of after 6 years. This balances up the assessment of the likely accuracy of the data over time with the potential utility of this dataset, whilst also recognising that it is stored securely with access restricted and that any request for use is robustly assessed on a case-by-case basis. Any further research undertaken with the recontact data will also include a clear opportunity for people to refuse to take part in or withdraw consent from the follow-up work. These data are permanently erased from the SG servers at the end of the relevant retention period.

The 2022 LGCDS project managers delete the recontact data shortly after this has been received and signed off by the Scottish Government.

3.4 Explain the legal basis for the sharing with internal or external partners:

Under data protection law we are required to identify a 'lawful basis' from Article 6 of the United Kingdom General Data Protection Regulation (UKGDPR) – in this case, it is "performance of a task in the public interest" (commonly referred to as 'public task'), where that task is set out in law, which here includes the section 149 (public sector equality duty) and section 1 (the fairer Scotland duty) of the Equality Act 2010.

As part of the survey, we also need to gather, use and process sensitive personal information about candidates (special category data, for example ethnicity, religion or health), to allow us to produce statistics on the demographic characteristics of candidates and elected members in Scotland . Candidates can be confident that we ensure that this processing is proportionate and is necessary for statistical research purposes under UKGDPR (Article 6(1)(e) and Article 9(2)(g)) and of the Data Protection Act 2018 section (Section 10(3) and paragraph 8 of schedule 1).

At the end of the survey candidates are asked if they would like to be sent a copy of the report and/or if they would be willing to participate in possible follow up research. If they say yes to either options, they are asked to provide their email address. 'Consent' is the legal basis for processing this data. Respondents are advised that they have the right to withdraw from the recontact database at any time and provided with information on how to do so in the privacy notice.

There are controller-processor arrangements between the Scottish Government and its contractors.

The APS Group and Questback will carry out processing on behalf of the Scottish Government. Both contractors guarantee to implement appropriate technical and organisational measures in such a manner that processing will meet the requirements of the UKGDPR and ensure the protection of the rights of the data subject. More information on the:

Scottish Government and APS Group framework agreement can be found at: Publishing, print and design (PPDAS) framework.

Questback Group Code of Privacy can be found at: Questback Group Code Of Privacy

Contact

Email: diverserepresentationdata@gov.scot

Back to top