Deciding to share aggregate or anonymised data

The main aim of the IISaM project was to support those who were considering whether to share personal or sensitive information.

However, services or organisations may receive requests to share information which is not personally identifiable, such as aggregate or anonymised data.

The Data Protection Act only covers information which relates to a living individual who can be identified from that data, and therefore the same considerations do not apply to anonymised or aggregated data.

The tool on this page highlights the key issues to consider when making a decision to share information not covered by the DPA.

Tool

Guidance on sharing non-personally identifiable information (PDF)

Learning

Information sharing to tackle violence – ISTV (PDF)

Further reading

ICO draft code of practice on anonymising data (PDF)