As well as storing the list of DBS checks you’ve requested and certificates you’ve seen, you should also keep a record of everyone who has seen the certificates or the information in them.
It’s against the law to:
The DBS code of practice states that all registered bodies need a written policy on correctly handling and safely storing DBS certificates and certificate information.
Organisations must also comply with their obligations under the General Data Protection Regulation (GDPR), Data Protection Act 2018, and other relevant legislation on safely handling, retaining and disposing of certificate information.
Last reviewed: 26 April 2023
Help us improve this contentGet regular updates on NCVO's help, support and services