Our privacy centre policies

Find our data protection policies, guidance, and information documents that together form our privacy centre policies.

On this page you will find VisitScotland policies which support data protection and privacy, including employment and cookies policies.

These policies govern how we collect, use and dispose of personal data.

Policies to support data protection and privacy

The following policies and guidance combine to inform incident management and data breach procedures:

Data protection policy	Information security policy
Data processing policy Data retention policy Data retention schedule Individual privacy rights and complaints policy Data suppliers / third party policy	Information classification and handling policy Network security policy System security policy Application security policy BYOD policy Information security operations policy PCI policy

Cookies policy information for all the VisitScotland websites can be found on these dedicated pages;