We use cookies to collect anonymous data to help us improve your site browsing experience.

Click 'Accept all cookies' to agree to all cookies that collect anonymous data. To only allow the cookies that make the site work, click 'Use essential cookies only.' Visit 'Set cookie preferences' to control specific cookies.

Set cookie preferences

Your cookie preferences have been saved. You can change your cookie settings at any time.

Publication - Advice and guidance

Scotland's Proof of Concept Fund: data protection impact assessment (DPIA)

Published
13 June 2025
From
Director of Economic Development
Directorate
Economic Development Directorate
Topic
Business, industry and innovation, Economy, Programme for Government
ISBN
9781836916741

The data protection impact assessment provides information on how data collected as part of the proof of concept fund will be handled in line with current data protection laws.

View supporting documents Supporting documents

8. Data protection risks identified, likelihood, impact, severity score, solutions or mitigation controls proposed and residual risk

Risk description

A risk of collecting sensitive personal data is that the information could be seen by someone outside of the Future economy team who are going to have ownership of the data that is being collected.

Risk ref number

2 (very low Risk)

Potential impact on the data subjects (people)

The potential impact on data subjects is that they are at risk of identity theft if someone was to have access to emails, names ext. they may also suffer discrimination or bias if information such as gender or race is leaked.

Mitigation Controls

Secure ERDM folder of personal data will be set up that just Future economy Team who are running PoC fund will have access to.

Residual Risk Score

Likelihood: 2

Impact: 2

Score: 2

Contact

Email: spinouts@gov.scot

Back to top