The browser you are using is out of date and is no longer supported. To view and use this site correctly, please update your browser to the latest version.
We have created a new public body, Historic Environment Scotland. While we work on shaping our future we can reassure you that all services and products will continue as normal. Please follow our progress and find out more about our new organisation.
Historic Scotland (HS) is required by law to protect the public funds it administers. It must share information provided to it with other bodies responsible for auditing or administering public funds, in order to prevent and detect fraud.
On behalf of the Auditor General for Scotland, Audit Scotland appoints the auditor to audit the HS accounts. Audit Scotland also assists appointed auditors by conducting a National Fraud Initiative, which is a data matching exercise.
Data matching involves comparing computer records held by one body against other computer records held by the same or another body to see how far they match.
This includes personal information and information on our Suppliers. Computerised data matching allows potentially fraudulent claims and payments to be identified but the inclusion of personal data within a data matching exercise does not mean that any specific individual is under suspicion. Where a match is found it indicates that there may be an inconsistency that requires further investigation. No assumption can be made as to whether there is fraud, error or other explanation until an investigation is carried out. The exercise can also help bodies to ensure that their records are up to date.
Audit Scotland currently requires HS to participate in a data matching exercise to assist in the prevention and detection of fraud. HS is required to provide particular sets of data to Audit Scotland for matching for each exercise, and these are set out in Audit Scotland’s Instructions (or handbook), which can be found at http://www.audit-scotland.gov.uk/work/nfi.php.
The use of data by Audit Scotland in a data matching exercise is carried out with statutory authority, normally under its powers in Part 2A of the Public Finance and Accountability (Scotland) Act 2000.
Audit Scotland does not require the consent of the individuals concerned under the Data Protection Act 1998.
Data matching by Audit Scotland is subject to a Code of Data Matching Practice. This may also be found at http://www.audit-scotland.gov.uk/work/nfi.php.
For further information on Audit Scotland’s legal powers and the reasons why it matches particular information, see the full text (Level 3) fair processing notice at http://www.audit-scotland.gov.uk/work/nfi.php.
The Data Controller for HS is the Scottish Ministers, Saughton House, Broomhouse Drive, Edinburgh, EH11 3XD.