Data protection

The business of NHS Resolution involves the processing of information about individuals. Often, due to the nature of the work of the organisation, this information will include details that many people would consider to be sensitive and/or private (for example, details about physical or mental health, performance at work, and financial affairs).

In order to protect the rights and freedoms of individuals, to retain the trust of those with whom we are dealing and that of the wider public and to minimise the risk of there being a successful legal challenge or regulatory action in relation to the way(s) in which the organisation processes personal information it is essential that we act in accordance with the law in this area. We also aim to follow ‘best practice’ recommendations where this is feasible.

Policy date:

Policy category: Corporate governance