<p>Concern has been repeatedly expressed around transparency and third-party processing of data when it comes to NHS applications designed for public use. The NHS’s track record for complying with the principles of GDPR and undertaking appropriate Data Protection Impact Assessments has been poor.<br /><br />It strikes me that the NHS app, in particular, lacks the necessary consent and transparency requirements surrounding data transfers. The public should be concerned as to where their biometric data is going and how it is ultimately stored and used outside of the purpose for which it was collected.</p>
<p>Concern has been repeatedly expressed around transparency and third-party processing of data when it comes to NHS applications designed for public use. The NHS’s track record for complying with the principles of GDPR and undertaking appropriate Data Protection Impact Assessments has been poor.<br /><br />It strikes me that the NHS app, in particular, lacks the necessary consent and transparency requirements surrounding data transfers. The public should be concerned as to where their biometric data is going and how it is ultimately stored and used outside of the purpose for which it was collected.</p>