SCW staff, payroll data and personal data such as contact details may be provided to bodies responsible for auditing, administering public funds or where undertaking a public function for the purposes of preventing and detecting fraud.

The National Fraud Initiative

NHS England is required to protect the public funds it administers. It may share information provided to it with other bodies responsible for; auditing, or administering public funds, or where undertaking a public function, in order to prevent and detect fraud.

We participate in the Cabinet Office’s National Fraud Initiative: a data matching exercise to assist in the prevention and detection of fraud. We are required to provide particular sets of data to the Minister for the Cabinet Office for matching for each exercise.

The use of data by the Cabinet Office in a data matching exercise is carried out with statutory authority under Part 6 of the Local Audit and Accountability Act 2014.

For more information on this please visit the following page: NHS England National Fraud Initiative.

CCGs commission a number of organisations (both within and outside the NHS) to provide healthcare services to you. SCW therefore provide anonymised statistical information with CCGs for the purpose of improving local services, research, audit and public health; for example understanding how health conditions spread across our local area compared against other areas.   


Who we receive information from NHS England
Clinical Commissioning Groups
Healthcare Providers
Patients and their families
Information in connection with Employment of staff
Other Commissioning Support Units
Public Authorities or Public Bodies
NHS Shared Business Support (SBS)
NHS Digital
Who we share information with NHS England
Clinical Commissioning Groups
Healthcare Providers
Information in connection with Employment of staff
Other Commissioning Support Units
Public Authorities or Public Bodies
NHS Shared Business Support (SBS)
NHS Digital
Purposes for processing Personal or Special Categories of Personal Data Requirement under contract
Request made by member of the public e.g. Complaint
Required for under obligations as an employer
Required for Recruitment purposes
A Statutory requirement
Required for Safeguarding Children/Vulnerable Adults
Required by Court Order
Required for the Detection and Prevention of Crime; e.g. fraud

We would not share information that identifies you unless we have a fair and lawful basis to do so, such as:

  • You have given us your explicit consent to do so and we have explained the consequences of the sharing and you understand your rights;
  • We need to act to protect children and vulnerable adults;
  • When a formal court order has been served upon us;
  • When we are lawfully required to report certain information to the appropriate authorities e.g. to prevent fraud or a serious crime;
  • we have been asked to do so by a Controller of the data we are processing on their behalf, this would require a written instruction;
  • Emergency Planning reasons such as for protecting the health and safety of others
  • When permission is given by the Secretary of State or the Health Research Authority on the advice of the Confidentiality Advisory Group to process confidential information without the explicit consent of individuals