We use cookies to collect anonymous data to help us improve your site browsing experience.

Click 'Accept all cookies' to agree to all cookies that collect anonymous data. To only allow the cookies that make the site work, click 'Use essential cookies only.' Visit 'Set cookie preferences' to control specific cookies.

Set cookie preferences

Your cookie preferences have been saved. You can change your cookie settings at any time.

Publication - Impact assessment

Human Tissue (Authorisation) (Scotland) Bill: DPIA

Published
11 June 2018
Directorate
Population Health Directorate
ISBN
9781788519397

The Data Protection Impact Assessment (DPIA) for the Human Tissue (Authorisation) (Scotland) Bill explores how the Bill impacts on personal data and privacy.

View supporting documents Supporting documents

7. Risks identified and appropriate solutions or mitigation actions proposed

Is the risk eliminated, reduced or accepted?

Risk

Ref

Solution or mitigation

Result

Paper registration form processing is contracted out to a supplier – they have data storage centres outside of the European Economic Area ( EEA).

1

All data is transferred securely via SFTP in accordance with IT Security procedures.

This information is communicated to registrants in the data privacy statement.

Sample checking is completed.

Reduce

Data is shared with external partners such as a mailing house

2

All data is transferred securely via SFTP in accordance with IT Security procedures.

A data sharing agreement is in place.

Reduce

Contact

Back to top