Data regulation breaches by Disclosure Scotland in last three years: FOI release

Information request and response under the Freedom of Information (Scotland) Act 2002.

FOI reference: FOI/18/02688  
Date received: 26 September 2018
Date responded: 31 October 2018
Information requested
GDPR and data breaches by Disclosure Scotland in the last three years, broken down by each year, the type of breach and the severity.

I enclose a copy of all of the information you requested in the format you asked for.

The Scottish Government takes data security seriously and all staff are required to undertake mandatory e-learning courses on protecting official information and Data Protection. A programme of security awareness communications, training and events also helps ensure that staff is aware of security arrangements and procedures in operation within the organisation. 

There is a clear defined process for managing any incidents involving data loss or theft, this includes making every effort to contact individuals involved and apologising for the error, where appropriate.

All incidents are thoroughly investigated to ensure that lessons are learned. The outcome of any investigation will, where appropriate, include recommendations on any changes to processes and procedures to mitigate the risk of a similar incident reoccurring. A governance body oversees the losses and breaches.

About FOI

The Scottish Government is committed to publishing all information released in response to Freedom of Information requests. View all FOI responses at
foi-18-02688 Copy of information requested


Please quote the FOI reference
Central Enquiry Unit 
Phone: 0300 244 4000

The Scottish Government 
St Andrew's House 
Regent Road 

Back to top