General Data Protection Regulations
On 25 May 2018, the Data Protection Act will be changing and replaced by the General Data Protection Regulations (GDPR).
Collecting your personal information
Your personal information is collected and handled in accordance with the Data Protection Act 1998. The information that we require varies between services.
When you are asked for your personal information there are specific criteria that we must follow whilst gathering it. During this process you will be informed why we are collecting the information, what we intend to do with it and whom we may share it with. You must ensure that any information you provide is accurate and if you notice any mistakes or your personal details alter you must inform us.
Sharing your personal information
To prevent and detect fraud it is a legal requirement that we share your information with the Cabinet Office. This is for the purpose of data matching as part of the National Fraud Initiative (NFI). Examples of data supplied are as follows:
- Council Tax
- housing services
- Blue Badge
- social care welfare
You will have been informed when we collected your personal information if we intend to share it with other people and organisations. However, you will not be informed if we are asked to provide your details for law enforcement or tax collection reasons.
Concerns about your personal information
If you have any concerns about the way your information is being handled you should contact us and we will arrange to carry out an internal review to investigate the situation.
Data matching to prevent fraud
We are required by law to protect the public funds we administer.
We may share information provided to us with other bodies responsible for:
- administering public funds
- where undertaking a public function
We do this to prevent and detect fraud.
Checking personal information records
The Cabinet Office is responsible for carrying out data matching exercises. Data matching involves comparing computer records held by one body against other computer records held by the same or another body to see how far they match. This is usually personal information.
Computerised data matching allows potentially fraudulent claims and payments to be identified. Where a match is found it may indicate that there is an inconsistency which requires further investigation. No assumption can be made as to whether there is fraud, error or other explanation until an investigation is carried out.
Information we provide
We participate in the Cabinet Office’s national Fraud Initiative: a data matching exercise to assist in the prevention and detection of fraud.
We are required to provide particular sets of data to the Minister for the Cabinet Office for matching for each exercise, as detailed here.
The Cabinet Office’s use of data in data matching
The use of data by the Cabinet Office in a data matching exercise is carried out with statutory authority under Part 6 of the Local Audit and Accountability Act 2014.
It does not require the consent of the individuals concerned under the Data Protection Act 1998.
Data matching by the Cabinet Office is subject to a Code of Practice
We have a duty to protect the public funds we administer, and as a result may use information that you provide us for the prevention and detection of fraud.
We may also share this information with organisations responsible for auditing or administering public funds for these purposes.
For further information on data matching please contact the Information Management Team.