It may share information provided to it with other bodies responsible for auditing, or administering public funds, or where undertaking a public function in order to prevent and detect fraud.
The cabinet office is responsible for carrying out data matching exercises such as comparing payroll records of a body against other records held by the same or another body to see how far they match.
Data matching allows potentially fraudulent claims and payments to be identified and where a match is found it may indicate that there is an inconsistency which requires further investigation.
No assumption can be made as to whether there is fraud, error or another explanation until an investigation is carried out.
South Tees Hospital NHS Foundation Trust (STHFT) is a mandatory participant in the cabinet office’s National Fraud Initiative and hence required to provide data to the minister for the cabinet office for each matching exercise.
Details about the NFI can be found on the following website: National Fraud Initiative: public-sector data requirements – GOV.UK (www.gov.uk)
The processing of data by the cabinet office in a data matching exercise is carried out with statutory authority under its powers in Part 6 of the Local Audit and Accountability Act 2014.
It does not require the consent of the individuals concerned under data protection legislation or the GDPR (General Data Protection Regulation).
Data matching by the cabinet office is subject to a code of data matching practice, also available on the www.gov.uk website.
The cabinet office has published its Data Privacy notice, which sets out how the Cabinet Office will use your personal data and your rights.
The notice is made under Article 14 of the General Data Protection Regulation (GDPR).
The legal basis for processing your personal data is that processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller.