Stoke On Trent Data Protection Is "Reasonable"

Apr 30, 2015

Following an audit conducted by The Information Commissioner's Office (ICO), Stoke on Trent City Council has been found to have "reasonable" compliance with data protection legislation.  

The local authority consensually agreed to an audit of the way it processes personal data and an introductory teleconference was held in November last year.  

During this introduction the ICO and the council agreed that the audit would focus on data protection governance, training and awareness and security of personal data.  

The overall concluson was that Stoke on Trent demonstrates "reasonable assurance" that its processes and procedures are in place and are delivering data protection compliance.  

The local authority was found to demonstrate good practice by ensuring all new employees are booked onto a data protection awareness course within six weeks of joining the organisation.  

This training is delivered desk-side on a one-to-one basis and training must be retaken if the employee is not registered properly.  

ICO claims that the council is constantly reviewing its data protection training based on feedback from delegates and its CRM provider is ISO27001 accredited.  

Its agile workers are also equipped with laptops that have appropriate security measures in place.  

The areas in which Stoke on Trent could improve on include periodical review of council contracts that provide acess to personal data, locking down on writable CD/DVD drives on dekstop machines, the implementation of an Information Asset Register and the implementation of the Privacy Impact Assessment procedure.  

Stoke Happy With Results  

"We are pleased that the audit found 'reasonable assurance' that we are complying with our obligations. This is second on scale of four assurance levels," a statement on the local authority's website claims.  

"We note from the ICO's published audits that only two other local authorities have achieved this rating in the last six months. 

"There were recommendations from the audit and again we were pleased to see that none of these showed any failure to meet statutory requirements, showing that the council is meeting its legal obligations in this area. 

"Even so, there is always room for improvement and we have accepted the ICO's recommendations to improve current processes," it adds.  

© 24N.biz

 

audit / data governance / data protection / ICO / local government / public sector / security / stoke on trent city council
Comments
No comments yet.

Comment

 

Understanding the risks and rewards of public sector cloud 

Download the Whitepaper now

Partner

Partners

24Newswire
Sign up to receive latest news

Twitter Feed

Why does pubsec ICT PR firm @MantisPR want to be at the upcoming #eventcentreUK THINK Digital Vendors 2016 event? https://t.co/3tE5o7aMmO
@24nbiz
Apr 01, 2016
@thinkdigicon supporter @Adv365 sets out its stall for tomorrow's landmark #gcloud event https://t.co/FQraJP2yyg
@24nbiz
Mar 21, 2016
@thinkdigicon supporter @Adv365 explains why it's supporting tomorrow's show https://t.co/2Wj3UECo9s
@24nbiz
Mar 21, 2016
@24n.biz: what's the final agenda for tomorrow's @thinkdigicon #gcloud @GOVUKdigimkt show? https://t.co/6CASi8lrnU
@24nbiz
Mar 21, 2016