Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data Protection, Freedom of Information and Information/Records Management.

Published byShona Marshall Modified over 8 years ago

Similar presentations

Presentation on theme: "Data Protection, Freedom of Information and Information/Records Management."— Presentation transcript:

1 Data Protection, Freedom of Information and Information/Records Management

2   What is information governance?  According to Gartner:  the specification of decision rights and an accountability framework to encourage desirable behavior in the valuation, creation, storage, use, archival and deletion of information. It includes the processes, roles, standards and metrics that ensure the effective and efficient use of information in enabling an organization to achieve its goals Information governance

3   Complying with  Data Protection Act  Freedom of Information Act  Environmental Information Regulations  Cookies Directive  RIPA  Whatever the EU and the government come up with next What does this mean in practice

4   Internal  Information security  Records management  External  Legislation  Guidance from ICO  Case law from the Information Tribunal and other courts  Standards Tools for compliance

5   Covers personal information of living individuals  Eight principals – fairness, specified purpose, relevance, accuracy, retention, rights of data subjects, security, transfer outside EEA  Sensitive personal data defined e.g. health  Conditions for processing  Schedule 2 for general  Schedule 3 for sensitive  Subject access requests  Requests for changes to personal information Data Protection Act

6   Things we do  Policy coming – some guidance already available  Breach procedure coming – tell us as soon as possible  Transfers outside the School procedure  Embedded in project planning process  When talking to people about their IT projects, remember to raise DP issues if the system will require processing of personal information  Handle subject access requests – sometimes have to contact IT services for this Complying with the DPA

7   Respond to requests in 20 working days  Have to be in writing  More than 18 hours work breaches cost limit  Some exemptions available – public interest test, prejudice test, time test  Publication scheme  Datasets – will be required to provide in machine readable format Freedom of Information Act

8   Cover environmental information only  Like FoI, must respond in 20 working days  Unlike FoI  Requests can be made verbally  Has exceptions rather than exemptions  All public interest test Environmental Information Regulations

9   Records management blurring into information management  Records are evidence of decisions made and action taken – more formal than information  However, more or less treated the same these days  Main issues are:  Finding information, particularly that produced by other staff  Sharing information securely outside shared drives  Disposing of information – particularly electronic Records and information management

10   Retention schedules set out how long records/info needs to be kept legally  Fairly easy with paper – box up, send to storage, destroy when reach disposal date or use confidential waste sacks.  Not so easy with electronic  Can use time trigger but when from? Date created? Date last used? What if not used for four years but relates to H&S accidents which need to be kept for 40 years?  Applying time triggers at which level? Document? Folder?  Deletion from systems like SITS – can you even do it or just wait until system is replaced? Latter not good enough for ICO Information disposal

11  Any questions?

Download ppt "Data Protection, Freedom of Information and Information/Records Management."

Similar presentations

Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.

Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.
Records Management and the NHS Code of Practice (Foundation) Information Governance Policy Team NHS Connecting for Health.

Records Management and the NHS Code of Practice (Foundation) Information Governance Policy Team NHS Connecting for Health.
Introduction to Information Governance (IG)

Introduction to Information Governance (IG)
Recordkeeping for Good Governance Toolkit

Recordkeeping for Good Governance Toolkit
Data Protection Information Management / Jody McKenzie.

Data Protection Information Management / Jody McKenzie.
Information & Compliance UL University of Limerick & UL employees obliged to comply with certain legislation, including: Freedom of Information.

Information & Compliance UL University of Limerick & UL employees obliged to comply with certain legislation, including: Freedom of Information.
Confidentiality & Records Management. What is Information Governance? What is Records Management?

Confidentiality & Records Management. What is Information Governance? What is Records Management?
What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.

What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.
Data Protection & Freedom of Information The Practical Implications of Data Protection and Freedom of Information Caroline Dominey Data Protection Officer.

Data Protection & Freedom of Information The Practical Implications of Data Protection and Freedom of Information Caroline Dominey Data Protection Officer.
Developing a Records & Information Retention & Disposition Program:

Developing a Records & Information Retention & Disposition Program:
Role of the Information Commissioner’s Office 'Promoting public access to official information and protecting your personal information' Christine Johnson.

Role of the Information Commissioner’s Office 'Promoting public access to official information and protecting your personal information' Christine Johnson.
Duncan Woodhouse – Assistant Registrar for Information Security, Risk Management and Business Continuity Helen Wollerton – Administrative Officer (Legal.

Duncan Woodhouse – Assistant Registrar for Information Security, Risk Management and Business Continuity Helen Wollerton – Administrative Officer (Legal.
Audiences NI Data Protection Workshop

Audiences NI Data Protection Workshop
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
1 25 October 2012 - EPFL Conference Data Protection in Intergovernmental Organizations Workshop 7 February 2013 K. Ernst S. Lüders C. Viala.

1 25 October EPFL Conference Data Protection in Intergovernmental Organizations Workshop 7 February 2013 K. Ernst S. Lüders C. Viala.
Clear Out Your Records: Policy and Planning Records Survey Anne Thompson Deputy Records Manager.

Clear Out Your Records: Policy and Planning Records Survey Anne Thompson Deputy Records Manager.
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.

 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
Data Protection for Church of Scotland Congregations

Data Protection for Church of Scotland Congregations
Class 14: Information Governance Jason R. Baron UMD Seminar on Ediscovery LBSC 708X/INFM 708X May 3, 2012.

Class 14: Information Governance Jason R. Baron UMD Seminar on Ediscovery LBSC 708X/INFM 708X May 3, 2012.
Practical Information Management

Practical Information Management

Similar presentations

Ads by Google