GDPR and information sharing – Scotland

Guidance to help practitioners and agencies better understand what they need to do to comply with data protection legislation

These resources are designed to help you ensure compliance with GDPR, while sharing the right information at the right time, to keep victims safe.

All agencies must have appropriate data protection policies to comply with GDPR (General Data Protection Regulations) and the Data Protection Act 2018. But the legislation is complex and can be confusing.

To help practitioners and agencies better understand the requirements, we have produced briefings about the safe sharing of information. These explore areas including:

  • seven principles of data protection
  • the lawful basis and legal grounds for sharing information
  • consent
  • legitimate interest
  • special considerations – e.g. children and young people, health
  • subject access requests (SARs)
  • links to relevant legislative guidance.

We have also produced example record forms for practitioners to use in accordance with their organisation’s data protection policies and procedures.

You may also be interested in

Dash risk checklist for Scotland

This resource provides guidance and versions of the Dash risk checklist that have been adapted for use in Scotland, including English and Gaelic versions.

Referral into Idaa service form

Use this form to make a referral, offering those assessed as being at high risk of serious harm the opportunity to access specialist support.

Subscribe to our newsletter

Sign up to receive our monthly newsletters about the latest training, events, research and fundraising initiatives at SafeLives. Together, we can end domestic abuse, for everyone, for good.

Sign up