Privacy statement

Our privacy statement explains how the Comptroller and Auditor General and the National Audit Office use and protect the data they hold.

View our full privacy statement


When we provide services, we want to make them easy, useful and reliable. Where services are delivered on the  internet, this sometimes involves placing small amounts of information on your device, for example, computer or mobile phone.  These include small files known as cookies. They cannot be used to identify you personally. These pieces of information are used to improve services.

See a list of cookies and edit your preferences.

Management of NAO records

Sets out the retention and disposal policy for NAO’s records, both paper and electronic:

Retention Disposal Schedules NAO Records (pdf – 105KB)

Statement on the management of personal data

The National Audit Office takes the protection of personal data very seriously. You can read about our commitment to the proper management of personal data in our statement.

Statement on the management of personal data at the NAO (pdf – 215KB)

Cyber Essentials Plus

Cyber Essentials is mandated for all Government suppliers. The National Audit Office is Cyber Essentials Plus certified demonstrating adherence to Government security, as tested by independent experts.