Skip to main content
Guidance

Vulnerabilities Data Standards: overview and guidance (Alpha Release)

Published 30 June 2026

© Crown copyright 2026

This publication is licensed under the terms of the Open Government Licence v3.0 except where otherwise stated. To view this licence, visit nationalarchives.gov.uk/doc/open-government-licence/version/3 or write to the Information Policy Team, The National Archives, Kew, London TW9 4DU, or email: psi@nationalarchives.gov.uk.

Where we have identified any third party copyright information you will need to obtain permission from the copyright holders concerned.

This publication is available at https://www.gov.uk/government/publications/vulnerabilities-data-standards-overview-and-guidance/vulnerabilities-data-standards-overview-and-guidance-alpha-release

1. Overview

This document sets out the documents forming an Alpha release of standards for data sharing around vulnerable people and households. 

These standards have been produced by a cross-government collaboration in the Vulnerabilities Working Group.

2. Scope of the Release

The Vulnerabilities Data Standards include the following components.

2.1 Conceptual and Logical Data Models for Vulnerability

This document proposes a Concept Model and a Logical Data Model, to find and support people who may be at risk of a vulnerability. 

This revision of the document presents the models as baselined at version 1.0.2.

The models have been conceived by the SAVVI programme, and scrutinised and refined by the Data Standards Authority Vulnerability Working Group; both are explained within that document.

Files

Conceptual and logical data models for Vulnerability (ODT)

Version

Version r3, dated 15 June 2026

What it’s for

  • facilitating multi-agency data sharing and collaboration in data-sharing for the purpose of identification and support of vulnerable people or households 

  • promoting a componentised and reusable component architecture 

  • support lawful, ethical, and transparent use of data 

  • create standards for organisations using the SAVVI Process

2.2 Governance of Vulnerability‑Related Taxonomies

A set of rules for controlling how taxonomies around the Vulnerabilities space, overseen by the Vulnerabilities Working Group, will be created, changed and managed.

Files

Governance model for vulnerability-related taxonomies (ODT)

Version

Version 0.2, dated 01 August 2025

What it’s for

  • controlling the process by which taxonomies in this domain will be governed

  • giving users confidence in the longevity of taxonomies produced in this domain

2.3 Taxonomy of Risk Factors

The list is provided in two formats: document and spreadsheet.

Files

  • Taxonomy of Risk Factors v0.3 (ODT) 

  • Taxonomy of Risk factors v0.3 (ODS)

What it’s for

  • centralised definitions for sharing specific attributes, especially those who may be at increased risk of some harm.

  • removing ambiguity in sharing data about vulnerable individuals or households.

  • allowing the minimal data required to be shared on vulnerable individuals or households (for example, sharing “Person is Under 18” rather than date of birth) to minimise data sharing risk.

3. Purpose of the Alpha Release

The Alpha versions of the standards are intended to generate evidence and learning on the maturity, usability, and ability to implement the standard. Refinement of the models will continue based on feedback from users, and the Taxonomy of Risk Factors is expected to be expanded based on both user feedback and continued development.

4. What’s new

This Alpha version is the first publication of the standards; future releases will include documentation of any changes.

5. Intended use

The standards are intended for use in information systems for the identification and support of vulnerable people or households, in particular for information exchange between different systems or organisations.

In that domain, the standards are intended to be consumed by:

  • programmes building and buying systems or upgrading technology

  • data architects and modellers designing systems for data interchange around vulnerable people

  • operational teams designing processes around identifying or supporting vulnerable people

  • policy experts in vulnerabilities who may wish to shape data collection and direct future taxonomy development

The models in this release are primarily designed for use with the SAVVI process for supporting vulnerable people, but they are designed to be usable in other processes around vulnerable people as well.

The taxonomy in this release is designed to be agnostic of specific processes or systems.

6. Contact

For queries, please contact the Vulnerabilities Working Group via the Data Standards Authority data-standards-authority@dsit.gov.uk

Back to top