An outstanding experience for every patient
Go to home page
For patients and visitors
About Us
Why choose us?
Keeping healthy
GP Portal

Data Protection Impact Assessments 

A Data Protection Impact Assessment (DPIA) is a process to help an organisation identify and minimise the data protection risks of a project, especially for processing that is likely to result in a high risk to individuals.  To assess the level of risk, both the likelihood and the severity of any impact on individuals must be considered.  High risk could result from either a high probability of some harm, or a lower possibility of serious harm.  It is also good practice to do a DPIA for any other major project which requires the processing of personal data, sometimes it is a mandatory data protection requirement.

The DPIA must:

  • describe the nature, scope, context and purposes of the processing;
  • assess necessity, proportionality and compliance measures;
  • identify and assess risks to individuals; and
  • identify any additional measures to mitigate those risks.

Here at Salisbury NHS Foundation Trust we work closely with suppliers and colleagues across the Trust to ensure that this GDPR obligation is carried out, recorded and regularly reviewed.

Below you will find a summary of all DPIAs carried out since 25th May 2018 when this became a data protection requirement.  The lists will be periodically updated with new completed DPIAs but if you would like more information about our process, or those listed below, please contact

Date Document
25 May 2018 - 30 November 2018 DPIA May-Nov 2018.pdf
25 May 2018 - 31 May 2019 DPIA May 2018 - May 2019.pdf
25 May 2018 - 31 July 2019 DPIA May 2018 - July 2019.pdf
25 May 2018 - 31 August 2019 DPIA May 2018 - August 2019
25 May 2018 - 31 October 2019 DPIA May 2018 - October 2019
25 May 2018 - 30 November 2019 DPIA May 2018 - November 2019
25 May 2018 - 30 December 2019 DPIA May 2018 - December 2019
Page Last Updated: 07/01/2020 12:21 
Printed from Salisbury NHS Foundation Website