90 likes | 289 Views
Good Practice Louise Webb, Head of Good Practice Kai Winterbottom, Group Manager Victoria Heath, Group Manager. Good Practice. Overview Consensual audit programme and scope areas Common areas of improvement Common areas of good practice Other Good Practice work Questions .
E N D
Good Practice Louise Webb, Head of Good PracticeKai Winterbottom, Group ManagerVictoria Heath, Group Manager
Good Practice • Overview • Consensual audit programme and scope areas • Common areas of improvement • Common areas of good practice • Other Good Practice work • Questions
Scope areas • Governance • Training and awareness • Records management • Security • Requests
Common areas of improvement • Monitoring of compliance – with policies and procedures to ensure that they are being followed; with legal obligations in relation to Subject Access Requests • Monitoring of training – to ensure it is fit for purpose and targeted at the required audience • Remote/home working – lack of appropriate checks to ensure security of data
Common areas of good practice • Management framework - to ensure there is effective oversight of data protection compliance. A framework of policies and procedures exist and subject to routine review to ensure they remain fit for purpose • IT security - USB endpoint controls • Records management – knowing what records are held and where, and that records are stored securely and that access to them is controlled
Good Practice • Assessment Notices Code of Practice • Audit of service providers • Self assessment • Advisory visits
Keep in touch Subscribe to our e-newsletter atwww.ico.gov.uk or find us on… • www.twitter.com/iconews