Subject Access Request Procedure

Size: px
Start display at page:

Download "Subject Access Request Procedure"

Transcription

1 Standard Operating Procedure 3 (SOP 3) Why we have a procedure? Subject Access Request Procedure Individuals have a legal right to see information that the Trust holds about them, subject to certain exemptions and unless there are compelling reasons not to do so. Black Country Partnership NHS Foundation Trust is committed to promoting a culture of openness and responding to requests for access to health records in a timely manner. Requests for access to health records are currently governed by the following legislation: Data Protection Act (1998) Section 7 of the Act gives patients the right to know whether the Trust is holding or processing information about them. The Act covers all personal information whether held on paper or on computer. All organisations holding personal information are required to comply with this legislation. Access to Health Records Act (1990) When the Data Protection Act came into force it repealed most of the Access to Health Records Act. The exception is the records of a person who has died, which are still governed by Section 3 of the Access to Health Records Act The Act gives a right of access to the personal representative of the person who has died. The representative will be someone who is entitled to administer the deceased person s estate by virtue of a grant of probate (if the deceased person left a will) or letter of administration (if they died intestate). General Data Protection Regulations (2012) Article12, 15 and Recitcal 63 provides rights to individuals about the use and access to their data. The Regulation gives rights of access to information regardless of the format it is recorded in. All organisations holding personal data are required to comply with this. What overarching policy the procedure links to? Information Sharing Policy Which services of the trust does this apply to? Where is it in operation? Group Inpatients Community Locations Mental Health Services all Learning Disabilities Services all Children and Young People Services x all Corporate Services all Subject Access Request Procedure Page 1 of 19 Version 2.0 January 2017

2 Who does the procedure apply to? All Staff Are responsible for adhering to the timescales highlighted within this policy and aiding the Information Governance Team with access to requested information. Information Governance Steering Group The Information Governance Steering Group is responsible for monitoring the amount of SARs received and completed by the Trust. The Group is also responsible for monitoring the SAR process to ensure that individual s rights are met. Caldicott Guardian The Caldicott Guardian provides advice in relation to the disclosure of records and the production of reports for requests which can been deemed as complex due to the information contained within the records or the circumstances surrounding the disclosure. Head of Information Governance Is responsible for ensuring the Trust is compliant with this procedure. The IG Manager is responsible for auditing and monitoring the SAR process. The IG Manager is responsible for ensuring that any complaints are fully reviewed. Information Governance and Data Protection Lead Is the main contact in relation to SARs, the IG and DPA Lead manages the SAR process and is responsible for ensuring that staff are aware of the process. Local Security Management Specialist (LSMS) Is responsible for the management of access to CCTV images. Service Managers, Team Managers, Clinical and Professional Leads. Service Managers and Professional Leads have a responsibility to ensure that this procedures is disseminated to all staff and are adhered to within their service area. When should the procedure be applied? The procedure should be applied for all requests for personal information. How to carry out this procedure Access to personal information is referred to as a Subject Access Request (SAR). The following flow chart shows the SAR process broken down into 6 stages: Subject Access Request Procedure Page 2 of 19 Version 2.0 January 2017

3 Subject Access Request Procedure Page 3 of 19 Version 2.0 January 2017

4 Stage 1 Request Received Formal requests for access to health records have to be made in writing. This can include but further proof of identification or signature maybe required. The Trust does not require a formal application form to be completed. However if the individual would prefer to complete an application form this can be provided (see appendix 1). All formal requests are dealt with centrally by the Information Governance Team based at Trust Headquarters. If patients ask for advice on applying for access, staff should advise them that they will need to: Put their request in writing (provide a copy of the application form were necessary) Provide the Trust with any relevant information that is required to sufficiently confirm their identity If the individual requires help to put the request in writing the staff member should aid the individual in either writing the request or completing the application form. Where a request is received by the service directly staff must be forwarded without delay to the Information Governance Team; it is preferred that the request is forwarded to the Information Governance Team within 48 hours of receipt as acknowledgement letters have to be forwarded to the applicant within 5 working days of receipt of the request. The acknowledgement letter will confirm receipt of the request and outline the process. Stage 2 Identity Checks The following individuals are able to apply for access to health records: The patient. Former patients living outside the UK still have the same rights to apply for access to their UK health records. These requests will be dealt with in the same way as an application for access within the UK. The patient s representative, with the patient s consent A parent or guardian may apply for access on behalf of a child if it is a health record A person appointed by the Courts, as the patient s litigation friend, may apply on behalf of a patient who is incapable of managing his/her own affairs. The Police The Coroner Courts The following individuals are able to apply for access to employee records: The employee The employee s representative, with the individuals consent A person appointed by the Court Relevant professional bodies for example the GMC and NMC. The Police Identity checks are completed for the individual requesting their records. Checks may also be made of the person s representative to ensure that they are able to receive the information e.g. a check may be made with the Information Commissioner s Register of Data Controllers to see if a firm of solicitors is registered correctly etc. The following table shows what documentation or identity checks are required for each requester type: Subject Access Request Procedure Page 4 of 19 Version 2.0 January 2017

5 Requester Consent Required? Identity Documents Required The Data Subject (the person to whom the information is about) No: as the request is made by the individual then further consent is not required Photo ID document such as Passport or Driving Licence. Proof of address Any Other Documentation Required No Additional Information Police Yes; in the absence of a Data Protection form If police are collecting the information then their ID Card must be checked prior to providing the information to them. Data Protection Form stating: The reason(s) for the request A crime reference number The legal basis for the request This must be countersigned by a relevant senior person at the police Coroner N/A N/A Written request from the Coroner. In some cases a court order may be required. The Data Protection Form for West Midlands Police is a WA170 Form. The coroner may request information from the Trust to assist them in the course of their duties. This must only be a copy and not the original. If the coroner requests the originals the Trust must make a copy and ask for Subject Access Request Procedure Page 5 of 19 Version 2.0 January 2017

6 the originals back when they have finished with them. Courts Yes N/A Court Order (where consent is not obtained) Staff should always seek advice from the Information Governance Team before releasing information. Any such requests will be dealt with in accordance with the requirements of the order. If the Trust is unable to comply with this request, the court must be informed immediately as to the reason why. Relatives, Carers, Next of Kin, patient personal representative. Yes (where applicable) Photo ID document such as Passport or Driving Licence. Proof of address. Confirmation to show relationship with patient; for example the patients birth certificate showing parents details. Where the patient is unable to provide consent due to lack of capacity this must be confirmed by the relevant clinician. Subject Access Request Procedure Page 6 of 19 Version 2.0 January 2017

7 Solicitors Yes N/A Signed consent form completed by patient (or their representative) from solicitors Third Parties (other organisations not listed) Where the patient is unable to provide consent due to lack of capacity this must be confirmed by the relevant clinician. The consent form received from the solicitor must be signed by a relevant individual who is able to consent on behalf of the patient. Yes N/A Patient consent is required to provide information to Third Parties. Where the patient is unable to give consent a relative, Carer (etc.) is able to do this on their behalf (see this section within the table for further details on their identity checks) Other NHS Trusts No N/A Confirmation of continuation of care needs is required from the requester. Safe haven checks are carried out in relation to the NHS Trust s contact details. Other organisations involved in the patients care; such as Local Authorities and private health care organisations. Yes (where applicable) Safe haven checks are carried out in relation to the organisation s contact details. Confirmation of continuation of care needs or reasons for access is required from the requester. Subject Access Request Procedure Page 7 of 19 Version 2.0 January 2017

8 Stage 3 - Record Located The IG and Data Protection Lead reviews all systems to locate all records for the individual. Once all records are located a review is complete to see if a charge can be applied to the release of the records. N.B Under the Data Protection Act 1998 a fee can be charged for records. From 25 th May 2018 the General Data Protection Regulation 2016 comes into force. From this date fees are no longer applicable Charges for Access to Health Records Under the terms of the Data Protection Act 1998 and subsequent Statutory Instruments, the Trust is able to request a fee for access to records. The maximum fees are as follows: 10 for providing copies of computerised records 50 for providing copies of manual health records The Trust has adapted Statutory Instrument 191 in relation to the fees limits applied by the Trust. For providing hard copies of all or part of manual records the charges shall be calculated on a sliding scale as follows: - Between A4 pages = From A4 pages = Over 300 A4 pages = (statutory maximum) For a combination of computerised and manually held paper records the statutory maximum allowed is and accordingly the fees for these records will be calculated on the sliding scale listed above. For Supervised Access, (simply to allow the data subject or their representative to view the manual or computerised records) there may be a standard fee of as allowed by the Data Protection Act This fee does not allow the applicant to be given copies of the records to take away; a separate charge will be levied for any such request. If a patient wishes to view their health record there will be no charge made however if the patient then wishes to be provided with copies, a fee may be required dependant on the above scale. No charge can be made for any information that has been generated or created in the previous 40 days from the date of the application. All charges are inclusive of postage and administrative costs incurred. The Trust will consistently apply the above charging arrangements to any requests for access to records. However a level of discretion will be allowed in cases where the patient has applied directly for the information, the consideration will be made in relation to the level of hardship and in support of patient care. Where the requester does not wish to pay the required fee the Information Governance and Data Protection Lead will support the individual in reducing the request by identifying the specific information required. Where the fee cannot be reduced and the requester is unable to pay the fee they will be offered the opportunity to view the original records. Subject Access Request Procedure Page 8 of 19 Version 2.0 January 2017

9 Disproportionate Effort The Data Protection Act does allow for records not to be released if providing a copy involves disproportionate effort. However, this is not defined and any decision is based on the total size of the combined record, the estimated time to copy etc. Where the Trust decides that disproportionate effort would be required to provide a copy of the record this decision will be taken by the Caldicott Guardian. This will be fully documented (including estimates for copying, total cost of provision etc.). At every stage the applicant will be asked to refine or limit their request rather than use this exemption. Clinical Review On receipt of a written request to access health records, the Information Governance Team will contact the relevant health professional(s) informing them of this request and requesting that they review the records prior to release. The health professional will be responsible for ensuring that they have: read and reviewed the record and considered the impact of release The health professional must inform the IG Team if there is any information contained within the records which may cause serious harm to the physical or mental health or condition of the patient, or any other person. Where the health professional has highlighted concerns with the release of the information but there is a legal requirement to release the information in the original unredacted format the concerns raised by the health professional must be highlighted as part of the disclosure letter. Stage 4 Copy Records Once the clinical review has been completed the IG and Data Protection Lead will arrange to receive a copy of all records, manual and electronic, in relation to the request. For manual records the IG and Data Protection Lead will arrange to access the records to be copied. Records are usually copied at the location that they are held, however there may be some instances where the originals are required by the Information Governance Team. Stage 5 Exemption Review There are two exemptions where information may be redacted or refused to be released in its entirety: Where the release of the information may cause serious harm to the physical or mental health or condition of the patient, or any other person. This is a clinical decision and the clinician will need to confirm that :- o they have read and reviewed the record and o they have considered the impact of release to the individual Where access would disclose information relating to or provided by a third person (this does not include the names of staff members making the entries to a record). Where it is agreed an exemption applies the Information Governance Officer must review the record in its entirety and redact the exempt information to ensure that this cannot be read or interpreted by the remaining information. Subject Access Request Procedure Page 9 of 19 Version 2.0 January 2017

10 Where an exemption is applied this must be explained within the disclosure response. If the health professional states that due to the patient s health by disclosing sections which show redacted information or by highlighting that some information has been removed would cause additional harm or distress to the patient then sections of the record may be removed and the explanation of the use of the exemption can be removed from the final disclosure response. Third Party Disclosure Before disclosing information to patients, or their representatives, the records must be checked for information that relates to an identifiable third party, the information may not be released unless: The third party is a health professional who has compiled or contributed to the health records or who has been involved in the care of the patient. The third party, who is not a health professional, gives their consent to the disclosure of that information. It is reasonable to dispense with that third party s consent (taking into account duty of confidentiality owed to the other individual, any steps to seek his or her consent and whether consent has been expressly refused). Health professionals under the Data Protection Act are not required to approach a third party for disclosure, but in some cases they may wish to. If decisions are taken following proper consideration, and for valid reasons, the Trust will accept responsibility for the actions of its staff if patients object to any refusals to disclose details. Stage 6 Release Information When a request is received for a copy of a record it will be taken to mean all records held by the Trust for that individual, unless the Trust is able to agree that the request can be refined. The Trust will make the information available to the individual or requester either by providing copies or inviting him/her to attend a meeting to view the records with an appropriate representative; this would usually be a member of staff from the Information Governance Team. Each case will be considered on an individual basis as to whether there is a requirement for the provision of additional support for the interpretation of these records. If the applicant raises any queries, then an appointment should be offered to meet with the appropriate health professional. If information is copied from the records, it should preferably, be handed to the individual. If that is not possible, and the information has to be posted, it must be sent in line with the Trust Safe Haven procedures; i.e. it should be sent as a minimum requirement via Recorded Delivery. Information will be provided to the individual either by sending them a photocopy of the records or, if via , a scanned copy. No matter how the information is supplied to the applicant, all of it must be intelligible. If records contain codes, technical terms or obtuse jargon, an understandable explanation must be provided for example by including a relevant abbreviation list. Subject Access Request Procedure Page 10 of 19 Version 2.0 January 2017

11 The Information Governance Team will maintain a record of all access requests with a full audit trail of actions completed and decisions taken. A standard response letter will be provided which will include: - Where to find the Trusts Complaint Process - The Information Commissioners Details - Exemption explanation (where applied) Time Allowed for Response The Data Protection Act 1998 requires access requests to be complied within 40 calendar days and in exceptional circumstances if it is not possible to comply within this period then the applicant must be informed. However, in line with Department of Health guidance the Trust will seek to release health records within 21 days (if possible). Failure to meet the appropriate deadlines may result in patients making a complaint to the Information Commissioner. Following the implementation of the General Data Protection Regulations the timescale for responding to requests will be one month (or 30 days) from the date received. The timescale starts as soon as the Trust receives the request for access to records. The Trust is able to pause the timescale under the following circumstances: Where all of the information needed to identify the individual s record or to confirm the information required has not been received within the initial written request. The paused timescale comes into effect once the information has been requested. Where a third party is acting on behalf of the individual and consent has not been received. The paused timescale comes into effect once the consent has been requested. If payment is required. The paused timescale comes into effect once the appropriate fee has been requested. Where the Trust requires further details, consent or payment the timescale is then paused, this allows the Trust the full time period to process and respond to the request. The timescale does not restart once the additional information or payment has been received for example; Working on a 40 calendar day timescale: If the Trust requested payment 5 days after the request was originally received, once the payment is received the Trust will have 35 days (or 16 days DoH standard) to complete the request. Where a response has not been received within 6 weeks of pausing a request a reminder must be sent to the requester. If no response is received within 3 months of the initial date the request was paused then the request will be marked as completed on the Trust system and a suitable response sent to the requester outlining if they still require the records they will have to reapply for the information. Access to CCTV Images Access to and the disclosure of, images recorded by CCTV or other similar surveillance equipment must be strictly controlled. This is not only to protect the rights of the individual but also to ensure that the chain of evidence remains intact. Access to recorded images must be restricted to those staffs that need to have access in order to achieve the purpose(s) of using the equipment. Subject Access Request Procedure Page 11 of 19 Version 2.0 January 2017

12 In adopting this national standard for the release of data to third parties, it is intended, as far as reasonably practicable, to safeguard the individual s rights to privacy and to give effect to the following principles: Recorded material shall be processed lawfully and fairly and used only for the purposes defined in the CCTV Code of Practice; Access to recorded material shall only take place in accordance with the CCTV Code of Practice; The release or disclosure of data for commercial or entertainment purposes is specifically prohibited. Police Access to CCTV Footage In the event of a crime in progress Police are allowed to view CCTV footage under the supervision of the appropriate manager. Should the Police subsequently require a copy of the CCTV footage they must put the request in writing either by submitting the relevant data protection form allowing access under section 29(3) or by completing the appropriate view / release form (Appendix 2). Third Party Access to CCTV Footage Disclosure of recorded images to third parties will be limited to the following: Law Enforcement Agencies where the images would assist in a specific criminal enquiry Prosecution Agencies Relevant legal representatives The media where it is decided that the public s assistance is needed in order to assist in the identification of victim, witness or perpetrator in relation to a criminal incident. As part of that decision the wishes of the victim of an incident should be taken into account All requests for access or for disclosure to third parties must be documented and the Trust LSMS informed. The reason(s) for disclosure must be compatible with the purpose(s) for which the images were originally obtained. Images must not be released to a third party without the consent of the data subject unless exception for the need to obtain the consent of the data subject is allowed within the Data Protection Act. For example: where disclosure is necessary for the prevention or detection of any unlawful acts where obtaining consent would prejudice that purpose (e.g. passing information to the Police which may help them prevent a serious crime). If access or disclosure to images is denied, the reason must be documented. If access or disclosure is allowed, then the following must be documented as per Appendix 2 and retained in a secure location: The date of the application and, where appropriate, the date when the search fee was received. The date and time at which access was allowed or the date on which disclosure was made. The identification of any third party who was allowed access or to whom disclosure was made. The reason for allowing access or disclosure. The extent of the information to which access was allowed or which was disclosed. In certain circumstances it may be necessary for the images of some or all of the data subjects (together with any vehicle number plates) to be masked before access or disclosure is permitted. (CCTV Code of Practice). Subject Access Request Procedure Page 12 of 19 Version 2.0 January 2017

13 Access by Data Subjects/Individuals The data subject can request a copy of their record images but it will only be provided if its production does not involve disproportionate effort. In all cases where a copy of a recording is requested by the data subject the advice of the Trust s Local Security Manager must be taken on whether a copy of the recording should be provided. Upon receipt of the request the LSMS will determine whether disclosure is appropriate and whether there is a duty of care to protect the images of any third parties. If the duty of care cannot be discharged then the request can be refused. A written response will be made to the individual, giving the decision (and if the request has been refused, giving reasons) within 21 days of receipt of the enquiry. If access or disclosure is allowed then the following will be documented: The date and time at which access was allowed or the date on which disclosure was made The identification of any third party who was allowed access or to whom disclosure was made The reason for allowing access or disclosure The extent of the information to which access was allowed or which was disclosed Completion of Appendix 3 for data subjects and other individuals should also include the collection of a minimal charge ( 10) to cover administrative costs: If third party images are not to be disclosed it will be necessary to arrange for the images to be disguised or blurred. Requests for Reports Requests for reports must be received in writing along with the relevant consent forms. This can include but further proof of identification or signature maybe required. Request for reports can be made directly to the relevant health professional. Where assistance is required these can be forwarded to the Information Governance Team who will review the request to ensure that the relevant consent and information is received and the report can be disclosed. The IG Team cannot provide clinical advice on what to include within the report, however such advice can be sought from the Caldicott Guardian. Where the IG Team have been involved a reference number will be provided and the IG Team will maintain a log of all actions associated with the request. Please see appendix 4 to show a simple chart in relation to information disclosures completed by the IG Team. Complaints In the event of the Trust refusing access to any record then the applicant can appeal against this decision through the Trust s Complaint Procedure by contacting the Trust s Complaints Manager. The complaint will be investigated in accordance with the provisions of the Data Protection Act and in compliance with guidance issued by the Information Commissioner s Office, the independent authority for upholding information rights in the public interest. Subject Access Request Procedure Page 13 of 19 Version 2.0 January 2017

14 Alternatively, the applicant can take this matter up directly with the Information Commissioner s Office. The Information Commissioner s Office may be contacted using any of the following methods: Post: Information Commissioner s Office Wycliffe House, Water Lane Wilmslow Cheshire SK9 5AF Telephone: Website address: Where do I go for further advice or information? The Information Governance Team will be able to provide any advice or additional support required in relation to access to records. All correspondence is to be sent to; informationgovernance@bcpft.nhs.uk. For advice and guidance in relation to CCTV images please contact the LSMS or a member of the Health and Safety Team. Training Staff may receive training in relation to this procedure, where it is identified in their appraisal as part of the specific development needs for their role and responsibilities. Please refer to the Trust s Mandatory & Risk Management Training Needs Analysis for further details on training requirements, target audiences and update frequencies Monitoring / Review of this Procedure In the event of planned change in the process(es) described within this document or an incident involving the described process(es) within the review cycle, this SOP will be reviewed and revised as necessary to maintain its accuracy and effectiveness. Equality Impact Assessment Please refer to overarching policy Data Protection Act and Freedom of Information Act Please refer to overarching policy Appendices Appendix 1 Subject Access Request Form Appendix 2 Access to CCTV Images Police Request Form Appendix 3 Application for Access to CCTV / Recorded Images Appendix 4 Flow Chart; How to Complete Requests for Access to Information Subject Access Request Procedure Page 14 of 19 Version 2.0 January 2017

15 APPENDIX 1 Subject Access Request - Information Form Patient Details Full Name: Current Address: DOB: NHS Number: (If known) Previous Address: Information Required Please Select As appropriate: I require: A Copy of my Full Records To View my Full Records To have a copy of part of my record Please provide information on what you require: Consent to release records I confirm that I am the above person and consent to the Trust releasing the information to me as selected within this form. Print: Sign: Date: Once complete forward this form to: Information Governance Department Delta House Delta Point Greets Green Road West Bromwich Subject Access Request Procedure B70 9PL Page 15 of 19 Version 2.0 January 2017

16 APPENDIX 2 Date/Time of Incident: ACCESS TO CCTV IMAGES POLICE FORM Crime / Safeguard Report No: Rank/Position/Force No. : Contact No: Station: Brief details of Incident reported: Reason for request: Signature: Rank/Position/No: Date: RECEIPT FOR SECURITY RECORDED DATA Date: Released by: Recorded material details: (DVD / CD-R / Photographs (printed Images)/Data Text Files/Print) Date Produced: Signature of person receiving: Trust Media Serial No: Police Rank/Position and Force No. Police Force: Station: Contact No: Police Property Receipt Number: Other Authorised Third-Party Name of person receiving: Function: Signature of person receiving: Subject Access Request Procedure Page 16 of 19 Version 2.0 January 2017

17 Appendix 3 APPLICATION FOR ACCESS TO CCTV / RECORDED IMAGES The Trust will only accept applications from the data subject, not persons acting on their behalf, except In a case where an application is made on behalf of a child less than 16 years of age by someone with parental responsibility for the child or an application is made on someone s behalf by a legal representative but only if the express consent of the data subject accompanies the request. Name of Applicant: APPLICATION DETAILS Address: Postcode: Name of Data subject: (if different from name of applicant) Please provide details of the date, time and location of when you believe you may have been recorded. If you wish to make an application to see any other occasions where you may have been recorded, please attach a separate form with the details. Only one search fee (see below) is payable if the application forms are received at the same time. Details: Location: Vehicle Registration Number: (only complete if you believe that your image was captured whilst you were travelling in a vehicle) Date: Time: Proof of the applicant s identity (i.e. passport or driving licence) will be required before access to or disclosure of recorded material is permitted. In the case of applications made on behalf of children, the child s consent may also be required. You will receive a written response to your application within 21 days. Access to recorded images will be provided within 40 days of receiving the required fee and information. I have read the above and understand the Trust s policy in relation to the purpose of the CCTV surveillance and the arrangements for access to recorded images. 1. I only wish to view the recoded image(s) 2. I enclose recent colour photographs of myself/the applicant in order that you can locate the correct image 3. I enclose a 10 cheque, made payable to the Black Country Partnership NHS Foundation Trust, in payment for the search to be completed. N.B. Two colour photo booth style photographs must be provided, one of which is full face and the other a side on perspective. Signed: Date: Subject Access Request Procedure Page 17 of 19 Version 2.0 January 2017

18 Appendix 4 How to Complete Requests for Information Receive Request for access to information including; copies of records and/or new medical, nursing or other professionals reports for solicitors, court or other purposes Forward to the Information Governance Team SUBJECT ACCESS REQUEST REQUEST FOR A REPORT Logged on the IG audit system. Acknowledgment sent. SAR is valid complete and signed by the requester. ID documentation is obtained, Forward to relevant health professional to review and produce a report. Locate the records. Ensure that clinical approval is obtained for the release. Copy all parts of the record and check for any exemptions that may apply Information Governance will work with the relevant staff member to produce the relevant report. Once complete the report will be reviewed by Safeguarding (if required). Complete a list of any abbreviations used within the records. Ensure the Fee (if applicable) has been collected. Release Information via agreed method. Subject Access Request Procedure Page 18 of 19 Version 2.0 January 2017

19 Standard Operating Procedure Details Unique Identifier for this SOP is State if SOP is New or Revised BCPFT-IG-SOP-05-3 Revised Policy Category Executive Director whose portfolio this SOP comes under Policy Lead/Author Job titles only Committee/Group Responsible for Approval of this SOP Month/year consultation process completed Information Governance Executive Director of Nursing Month/year SOP was approved December 2016 Next review due December 2019 Disclosure Status Head of Information Governance Information Governance Steering Group B can be disclosed to patients and the public Review and Amendment History Version Date Description of Change Jan 2017 Oct 2014 Full SOP review and new format New SOP for BCPFT linked to Information Sharing Policy Subject Access Request Procedure Page 19 of 19 Version 2.0 January 2017

CCTV POLICY. Document Type Corporate Policy. Unique Identifier HS-103

CCTV POLICY. Document Type Corporate Policy. Unique Identifier HS-103 CCTV POLICY Document Type Corporate Policy Unique Identifier HS-103 Document Purpose This policy covers the internal and external use of close circuit television in and around buildings owned by, or leased

More information

Data Protection Policy

Data Protection Policy Data Protection Policy The school collects and uses certain types of personal information about staff, pupils, parents and other individuals who come into contact with the school in order provide education

More information

Closed Circuit Television Code of Practice

Closed Circuit Television Code of Practice Closed Circuit Television Code of Practice Introduction and accountability The College has in place a comprehensive closed circuit television ( CCTV ) system to assist in providing a safe and secure environment

More information

CCTV CODE OF PRACTICE

CCTV CODE OF PRACTICE EDINBURGH NAPIER UNIVERSITY CCTV CODE OF PRACTICE Introduction The monitoring, recording, holding and processing of images of identifiable individuals constitutes personal data as defined by the Data Protection

More information

Subject Access and Other Information Rights: Information Governance ( IG ) Policy

Subject Access and Other Information Rights: Information Governance ( IG ) Policy Subject Access and Other Information Rights: Information Governance ( IG ) Policy FINAL 1.0 July 2017 SUMMARY This Policy: Ensures that all managers and staff are aware of and comply with the Trust s statutory

More information

CCTV Code of Practice

CCTV Code of Practice CCTV Code of Practice Belfast Trust CCTV Code of Practice Introduction Closed Circuit Television (CCTV) systems are in place across the Belfast trust. These systems comprise of cameras installed at strategic

More information

North Yorkshire County Council. Subject Access Request Guidance and Procedure. Data Protection Act 1998

North Yorkshire County Council. Subject Access Request Guidance and Procedure. Data Protection Act 1998 North Yorkshire County Council Subject Access Request Guidance and Procedure Data Protection Act 1998 The Data Protection Act 1998 (the Act), section 7 (1) gives individuals certain rights with regards

More information

Schools Subject Access Request Procedures

Schools Subject Access Request Procedures Schools Subject Access Request Procedures Policy reviewed by Academy Transformation Trust on June 2018 This policy links to: Located: Data Protection Policy Freedom of Information Policy Review Date May

More information

Freedom of Information Act 2000 Policy and Procedure

Freedom of Information Act 2000 Policy and Procedure Freedom of Information Act 2000 Policy and Procedure Version: V1.3 Ratified by: Date ratified: February 2017 Name of author and title: Date Written: February 2012 Patient Documentation and Policy Ratification

More information

Great Leighs Primary School. Data Protection and Freedom of Information Policy. Adopted: April Review Date: April 2018.

Great Leighs Primary School. Data Protection and Freedom of Information Policy. Adopted: April Review Date: April 2018. Great Leighs Primary School Data Protection and Freedom of Information Policy Adopted: April 2015 Review Date: April 2018 Contents 1. Introduction... 1 2. Purpose... 1 3. What is Personal Information?...

More information

DATA PROTECTION AND FREEDOM OF INFORMATION POLICY

DATA PROTECTION AND FREEDOM OF INFORMATION POLICY DATA PROTECTION AND FREEDOM OF INFORMATION POLICY Version 1.0 Date 11/11/2016 Approved by Board of Directors 09/02/2017 Version Date Description Revision author 1.0 11/11/2016 Trust Version Created FMW

More information

Data Protection Policy

Data Protection Policy Complaints Procedure If anyone in the school community feels that this policy is not being followed then they should raise the matter first with the Headteacher and, if concerns persists, with the Chair

More information

SUBJECT ACCESS REQUEST

SUBJECT ACCESS REQUEST DATA PROTECTION ACT 1998 SUBJECT ACCESS REQUEST Procedure Manual Page 1 of 22 Invest NI 1. Introduction 1.1 What is a Subject Access Request? 1.2 Routine Requests 1.3 What is an individual entitled to?

More information

Data Protection Policy

Data Protection Policy Data Protection Policy Co-ordinator Will Taylor Date of Completion June 2017 Date of adoption by Governors June 2017 Date to be reviewed June 2019 Introduction The new Data Protection Act 1998 (EU Directive

More information

Data Protection Policy. Revisions and Editions Log

Data Protection Policy. Revisions and Editions Log Data Protection Policy Revisions and Editions Log Data Protection Policy adopted February 2015 Review Resources Comm February 2016 Reviewed Feb 2017 FGB Next review Feb 2018 School Data Protection Policy

More information

Data Protection Policy

Data Protection Policy Data Protection Policy Policy & Procedure Number: 73 Date of Board of Trustees Review: Summer 2017 Next Review Due: Summer 2019 Trust Link: Mr I Kirkham Revision Number: v1 A Commitment to Excellence 1

More information

Access to Personal Information Procedure

Access to Personal Information Procedure Purpose of The sixth principle of the Data Protection Act 1998 gives rights to individuals in respect of the personal data that organisations hold about them. The Act says that: Personal data shall be

More information

Access to Health Records Policy

Access to Health Records Policy Access to Health Records Policy Access to Health Records Data Protection Department of Health Guidance for Access to Health Records Requests Document No: EDM012 Version: 2 Developed in Consultation with:

More information

Freedom of Information Act 2000 (Section 50) Decision Notice

Freedom of Information Act 2000 (Section 50) Decision Notice Freedom of Information Act 2000 (Section 50) Decision Notice Date: 9 December 2010 Public Authority: Middlesbrough Council Address: PO Box 99 Town Hall Middlesbrough TS1 2QQ Summary The complainant requested

More information

St. Paul s C of E Primary School

St. Paul s C of E Primary School St. Paul s C of E Primary School Data Protection Policy Reviewed January 2016 Next Review Date January 2019 St. Paul s C. of E. Primary School DATA PROTECTION POLICY School Aim Statement Everyone working

More information

Statutory Policy No 7 DATA PROTECTION POLICY

Statutory Policy No 7 DATA PROTECTION POLICY Statutory Policy No 7 DATA PROTECTION POLICY School Staff were consulted on this document and it was accepted by the Trust. Review Cycle November 2015 3 Years CHANGES November 2015 NONE This is a model

More information

Subject Access Requests

Subject Access Requests Subject Access Requests Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised

More information

Freedom of Information Act 2000 (Section 50) Decision Notice

Freedom of Information Act 2000 (Section 50) Decision Notice Freedom of Information Act 2000 (Section 50) Decision Notice Date: 6 September 2011 Public Authority: Address: The Chief Constable Kent Police Headquarters Sutton Road Maidstone Kent ME15 9BZ Summary The

More information

Environmental Information Regulations Decision Notice

Environmental Information Regulations Decision Notice Environmental Information Regulations 2004 Decision Notice Date: 4 August 2011 Public Authority: Address: Carmarthenshire County Council County Hall Carmarthen Carmarthenshire SA31 1JP Summary The complainant

More information

BACKGROUND INFORMATION

BACKGROUND INFORMATION Data Protection 1. BACKGROUND INFORMATION The law governing Data Protection is covered by the Data Protection Act 1998. It implements the EC Data Protection Directive (95/46/EC) in the UK. The Act came

More information

Practical Guidance on the sharing of information and information governance for all NHS organisations specifically for Prevent and the Channel process

Practical Guidance on the sharing of information and information governance for all NHS organisations specifically for Prevent and the Channel process Page 1 of 15 Practical Guidance on the sharing of information and information governance for all NHS organisations specifically for Prevent and the Channel process Page 2 of 15 NHS England Information

More information

Data Protection Policy and Procedure

Data Protection Policy and Procedure Data Protection Policy and Procedure Reference No. P09:2007 Implementation date 12022008 Version Number Version 2.0 Reference No: Name. Linked documents Policy Section Procedure Section Yes Yes Suitable

More information

Data Protection Policy

Data Protection Policy Data Protection Policy Durrington High School as part of the Durrington Multi Academy Trust collects and uses personal information about staff, pupils, parents and other individuals who come into contact

More information

Information Management Unit. Data Protection Policy for Schools BURNT TREE PRIMARY SCHOOL. Date Issued: September 30th 2015

Information Management Unit. Data Protection Policy for Schools BURNT TREE PRIMARY SCHOOL. Date Issued: September 30th 2015 Information Management Unit Data Protection Policy for Schools Tier 1 Policy BURNT TREE PRIMARY SCHOOL Date Issued: September 30th 2015 Page 1 of 9 Document Control Owning organisation Sandwell Council

More information

RESTRICTED (when complete)

RESTRICTED (when complete) Form 2902B: Application for access to your personal data held by Kent Police Section 7(1)(a) & 7(1)(b)(i) & 7(1)(c)(i) of the Data Protection Act 1998 (Subject Access) Your Subject Access Rights Subject

More information

DATA PROTECTION POLICY STATUTORY

DATA PROTECTION POLICY STATUTORY DATA PROTECTION POLICY MAIDEN ERLEGH TRUST STATUTORY INITIAL APPROVAL July 2017 REVIEW FREQUENCY At least every two years REVIEWED CONTENTS PART ONE: POLICY STATEMENT & OBJECTIVES PART TWO: STATUS OF THE

More information

Freedom of Information Act 2000 (FOIA) Decision notice

Freedom of Information Act 2000 (FOIA) Decision notice Freedom of Information Act 2000 (FOIA) Decision notice Date: 26 January 2017 Public Authority: Address: Parliamentary and Health Service Ombudsman Millbank Tower Millbank London SW1P 4QP Decision (including

More information

Child sex offenders disclosure scheme (CSODS)

Child sex offenders disclosure scheme (CSODS) Contents Child sex offenders disclosure scheme (CSODS) Part one Policy... 2 Chapter 1 Legislation... 2 Chapter 2 Cross border applications... 4 Receiving force... 5 Coordinating force... 5 Responding forces...

More information

PROCEDURE (Essex) / Linked SOP (Kent) Data Protection. Number: W 1011 Date Published: 24 November 2016

PROCEDURE (Essex) / Linked SOP (Kent) Data Protection. Number: W 1011 Date Published: 24 November 2016 1.0 Summary of Changes 1.1 This procedure/sop has had an additional paragraph added at 3.8.6 relating to data processing of information by direct access to Athena. 2.0 What this Procedure/SOP is About

More information

Privacy Notice (GDPR) - Vetting

Privacy Notice (GDPR) - Vetting Privacy Notice (GDPR) - Vetting Who we are: The Police Service of Scotland is a constabulary established under the Police and Fire Reform (Scotland) Act 2012. Its headquarters is located at Tulliallan

More information

Access to Patient Health Records Policy

Access to Patient Health Records Policy Access to Patient Health Records Policy This Policy provides guidance on the processes that are to be followed when dealing with requests for access to health records, under section 7 of the Data Protection

More information

INTRODUCTION 3 ABOUT THE NTPF 4 CLASSES OF RECORDS HELD BY THE NATIONAL TREATMENT PURCHASE FUND 5 HOW TO OBTAIN INFORMATION UNDER THE FOI ACT 7

INTRODUCTION 3 ABOUT THE NTPF 4 CLASSES OF RECORDS HELD BY THE NATIONAL TREATMENT PURCHASE FUND 5 HOW TO OBTAIN INFORMATION UNDER THE FOI ACT 7 A Combined Guide Issued in Accordance with Section 15 and 16 of the FREEDOM OF INFORMATION ACTS 1997 & 2003 INTRODUCTION 3 INTRODUCTION TO THE ACT 3 MAIN FEATURES OF THE ACT 3 OBLIGATIONS UNDER SECTION

More information

Request under the Freedom of Information Act 2000 (FOIA)

Request under the Freedom of Information Act 2000 (FOIA) Our Ref: 005566/16 Freedom of Information Section Nottinghamshire Police HQ Sherwood Lodge, Arnold Nottingham NG5 8PP 16 January 2017 Tel: 101 Ext 800 2507 Fax: 0115 967 2896 Dear Request under the Freedom

More information

Privacy Notice (GDPR) Licensing Firearms

Privacy Notice (GDPR) Licensing Firearms Privacy Notice (GDPR) Licensing Firearms Who we are: The Police Service of Scotland is a constabulary established under the Police and Fire Reform (Scotland) Act 2012. Its headquarters is located at Tulliallan

More information

Data Protection Act 1998 Policy

Data Protection Act 1998 Policy Data Protection Act 1998 Policy Responsibility for Policy: Relevant to: University Secretary All Staff, Students and Academic Partnerships Approved by: SMT in September 2016 Responsibility for Document

More information

Freedom of Information Review

Freedom of Information Review WILTSHIRE POLICE FORCE PROCEDURE Freedom of Information Review Effective from: 17 th July 2012 Last Review Date: August 2014 Version: 2.0 Next Review Date: August 2017 TABLE OF CONTENTS PROCEDURE OVERVIEW...

More information

The London Borough of Barnet. The Metropolitan Police Barnet Borough Division

The London Borough of Barnet. The Metropolitan Police Barnet Borough Division The London Borough of Barnet in partnership with The Metropolitan Police Barnet Borough Division Code of Practice for the operation of Closed Circuit Television October 2014 Change Control Item Reason

More information

Freedom of Information Act 2000 (Section 50) Environmental Information Regulations Decision Notice

Freedom of Information Act 2000 (Section 50) Environmental Information Regulations Decision Notice Freedom of Information Act 2000 (Section 50) Environmental Information Regulations 2004 Decision Notice Date: 21 October 2010 Public Authority: Address: Carmarthenshire County Council County Hall Carmarthen

More information

Merrydale Infant School Freedom of Information Act

Merrydale Infant School Freedom of Information Act Merrydale Infant School Freedom of Information Act Chair s signature Head s signature Date Review date. 1 Explanatory Notes Governing bodies are responsible for ensuring that schools comply with the Freedom

More information

Receiving and Responding to a Freedom of Information Act Request: Standard Operating Procedure

Receiving and Responding to a Freedom of Information Act Request: Standard Operating Procedure Corporate - Information Governance Receiving and Responding to a Freedom of Information Act Request: Standard Operating Procedure Document Control Summary Status: Replacement. Replacing: Freedom of Information

More information

THE FREEDOM OF INFORMATION LAW, 2007 (LAW 10 OF 2007) THE FREEDOM OF INFORMATION (GENERAL) REGULATIONS, 2008

THE FREEDOM OF INFORMATION LAW, 2007 (LAW 10 OF 2007) THE FREEDOM OF INFORMATION (GENERAL) REGULATIONS, 2008 Supplement No. published with Gazette No. dated, 2008. THE FREEDOM OF INFORMATION LAW, 2007 (LAW 10 OF 2007) THE FREEDOM OF INFORMATION (GENERAL) REGULATIONS, 2008 2 THE FREEDOM OF INFORMATION LAW, 2007

More information

INFORMATION SHARING AGREEMENT WEST YORKSHIRE POLICE. and LEEDS AND YORK PARTNERSHIP NHS FOUNDATION TRUST

INFORMATION SHARING AGREEMENT WEST YORKSHIRE POLICE. and LEEDS AND YORK PARTNERSHIP NHS FOUNDATION TRUST INFORMATION SHARING AGREEMENT WEST YORKSHIRE POLICE and LEEDS AND YORK PARTNERSHIP NHS FOUNDATION TRUST Version 4.0 1 of 14 CONTENTS SUMMARY SHEET 1. INTRODUCTION 2. PURPOSE 3. PARTNER(S) 4. POWER(S) 5.

More information

How we use Personal Information

How we use Personal Information How we use Personal Information Introduction This document explains how British Transport Police obtains, holds, uses and discloses information about people - their personal information 1 -, the steps

More information

Freedom of Information Act 2000 (Section 50) Decision Notice

Freedom of Information Act 2000 (Section 50) Decision Notice Freedom of Information Act 2000 (Section 50) Decision Notice 1 December 2008 Public Authority: Address: Ofsted (Office for Standards in Education) Alexandra House 33 Kingsway London WC2B 6SE Summary Following

More information

The installation of CCTV can provide information on activities at the Water,

The installation of CCTV can provide information on activities at the Water, ST CHAD S WATER LNR CCTV CODE OF PRACTICE St Chad s Fishing Club A closed circuit television system is used at St Chad s Water LNR, Church Wilne (known in the Code as the Water) by the St Chad s Fishing

More information

Request under the Freedom of Information Act 2000 (FOIA)

Request under the Freedom of Information Act 2000 (FOIA) Our Ref: 008043/14 Freedom of Information Section Nottinghamshire Police HQ Sherwood Lodge, Arnold Nottingham NG5 8PP 07 January 2015 Tel: 101 Ext 800 2507 Fax: 0115 967 2896 Request under the Freedom

More information

How we use Personal Information

How we use Personal Information How we use Personal Information Introduction This document explains how Essex Police obtains, holds, uses and discloses information about people - their personal information 1 -, the steps we take to ensure

More information

Request under the Freedom of Information Act 2000 (FOIA)

Request under the Freedom of Information Act 2000 (FOIA) Our Ref: 005664/12 Freedom of Information Section Nottinghamshire Police HQ Sherwood Lodge, Arnold Nottingham NG5 8PP Tel: 101 Ext 800 2507 Fax: 0115 967 2896 19 October 2012 Request under the Freedom

More information

Beaufort Primary School and Beaufort Nursery

Beaufort Primary School and Beaufort Nursery Beaufort Primary School and Beaufort Nursery Subject Access Request Policy Governor committee responsible: Headteacher Review period: 2 years Date Adopted: May 2018 Next Review: May 2020 1. Introduction

More information

Data Protection Commissioner s Foreword 3. Chapter 1: Introduction - Scope of the Guidance 5. Chapter 2: First Data Protection Principle 7

Data Protection Commissioner s Foreword 3. Chapter 1: Introduction - Scope of the Guidance 5. Chapter 2: First Data Protection Principle 7 DATA PROTECTION (JERSEY) LAW 2005 HEALTH DATA USE & DISCLOSURE GD7 2 DATA PROTECTION (JERSEY) LAW 2005 Health Data Use & Disclosure Contents Data Protection Commissioner s Foreword 3 Chapter 1: Introduction

More information

b) How many outstanding arrest warrants does Suffolk Constabulary currently have?

b) How many outstanding arrest warrants does Suffolk Constabulary currently have? Freedom of Information Request Reference N o : FOI 004789-17 I write in connection with your request for information received by Suffolk Constabulary on the 2 May 2017 in which you sought access to the

More information

OFFICE OF THE POLICE AND CRIME COMMISSIONER FREEDOM OF INFORMATION ACT 2000 PUBLICATION SCHEME

OFFICE OF THE POLICE AND CRIME COMMISSIONER FREEDOM OF INFORMATION ACT 2000 PUBLICATION SCHEME Introduction OFFICE OF THE POLICE AND CRIME COMMISSIONER FREEDOM OF INFORMATION ACT 2000 PUBLICATION SCHEME The Freedom of Information Act gives a general right of access to all types of recorded information

More information

Freedom of Information Act 2000 (FOIA) Decision notice

Freedom of Information Act 2000 (FOIA) Decision notice Freedom of Information Act 2000 (FOIA) Decision notice Date: 3 November 2016 Public Authority: Address: Chief Constable of Staffordshire Police Police Headquarters PO Box 3167 Stafford ST16 9JZ Decision

More information

Data Protection Bill [HL]

Data Protection Bill [HL] [AS AMENDED IN PUBLIC BILL COMMITTEE] CONTENTS PART 1 PRELIMINARY 1 Overview 2 Protection of personal data 3 Terms relating to the processing of personal data PART 2 GENERAL PROCESSING CHAPTER 1 SCOPE

More information

Staff Data Protection Policy

Staff Data Protection Policy Staff Data Protection Policy Version: 9.0 Approval Status: Approved Document Owner: Graham Feek Classification: External Review Date: 02/11/2016 Effective from: 1 July 2015 Table of Contents 1. The Data

More information

Purpose specific Information Sharing Agreement. Community Safety Accreditation Scheme Part 2

Purpose specific Information Sharing Agreement. Community Safety Accreditation Scheme Part 2 Document Information Summary Partners ISA Ref: As Part 1 An agreement to formalise the information sharing arrangements for the purpose of specific Information sharing pursuant to Crime and Disorder reduction

More information

Freedom of Information Act 2000 (Section 50) Decision Notice

Freedom of Information Act 2000 (Section 50) Decision Notice Freedom of Information Act 2000 (Section 50) Decision Notice Date 12 November 2007 Public Authority: Gloucestershire NHS Primary Care Trust Address: 1250 Lansdowne Court Gloucester Business Park Gloucester

More information

FREEDOM OF INFORMATION POLICY

FREEDOM OF INFORMATION POLICY FREEDOM OF INFORMATION POLICY Approved: October 2014 Review due: October 2017 FREEDOM OF INFORMATION POLICY 1. Introduction The Southfield Grange Trust is committed to the Freedom of Information Act (FoI)

More information

Freedom of Information Policy

Freedom of Information Policy Audience Named person responsible for monitoring Freedom of Information Policy All Staff & Governors Head Agreed by Personnel Committee June 2015 Agreed by Governing Body July 2015 Date to be Reviewed

More information

Immigration and Nationality Directorate

Immigration and Nationality Directorate Form FLR(HSM) Please staple photographs here..0 Version 08/2003 Immigration and Nationality Directorate Application for an extension of stay (limited leave to remain) in the United Kingdom as a Highly

More information

Request under the Freedom of Information Act 2000 (FOIA)

Request under the Freedom of Information Act 2000 (FOIA) Our Ref: 002182/13 Freedom of Information Section Nottinghamshire Police HQ Sherwood Lodge, Arnold Nottingham NG5 8PP Tel: 101 Ext 800 2507 Fax: 0115 967 2896 12 April 2013 Request under the Freedom of

More information

Freedom of Information Policy, Procedures and Requests

Freedom of Information Policy, Procedures and Requests Freedom of Information Policy, Procedures and Requests Last reviewed: February 2017 This document applies to all academies and operations of the Vale Academy Trust. The following related document(s) can

More information

A closed circuit television system is used at the Memorial Hall by the Parish Council.

A closed circuit television system is used at the Memorial Hall by the Parish Council. BREADSALL PARISH COUNCIL CCTV CODE OF PRACTICE A closed circuit television system is used at the Memorial Hall by the Parish Council. The safety of residents using the car park and visitors to the buildings

More information

Freedom of Information Act Procedure

Freedom of Information Act Procedure Freedom of Information Act Procedure The key messages the reader should note about this document are: 1. Sets out the Trust s statutory obligation to provide information under the Freedom of Information

More information

GENERAL PROTOCOL FOR SHARING INFORMATION BETWEEN AGENCIES IN KINGSTON UPON HULL AND THE EAST RIDING OF YORKSHIRE

GENERAL PROTOCOL FOR SHARING INFORMATION BETWEEN AGENCIES IN KINGSTON UPON HULL AND THE EAST RIDING OF YORKSHIRE GENERAL PROTOCOL FOR SHARING INFORMATION BETWEEN AGENCIES IN KINGSTON UPON HULL AND THE EAST RIDING OF YORKSHIRE 2008 CONTENTS 1. INTRODUCTION Purpose of this document 1-6 2. KEY LEGISLATION AND GUIDANCE

More information

Standard Operating Procedure

Standard Operating Procedure Disclosure Scheme for Domestic Abuse Scotland (DSDAS) Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication

More information

PRIVACY MANAGEMENT PLAN

PRIVACY MANAGEMENT PLAN PRIVACY MANAGEMENT PLAN September 2015 Contents 1. Introduction... 3 1.2 Purpose... 3 1.3 Scope... 3 1.3 Section 41 Directions... 3 1.4 Complaints... 4 2. Definitions... 4 2.1 Personal Information... 4

More information

FREEDOM OF INFORMATION REQUEST

FREEDOM OF INFORMATION REQUEST FREEDOM OF INFORMATION REQUEST Request Number: F-2009-00723 Keyword: Finance Subject: COMMON PURPOSE CHARITY Request and Answer: I am writing to confirm that the Police Service of Northern Ireland has

More information

Professional Title (e.g. Avocat / Rechtsanwalt): No (circle the relevant answer) If yes please provide details (on a separate sheet of paper)

Professional Title (e.g. Avocat / Rechtsanwalt): No (circle the relevant answer) If yes please provide details (on a separate sheet of paper) Passport size photograph Attach here THE LAW SOCIETY OF SCOTLAND APPLICATION FOR A CERTIFICATE OF ELIGIBILITY TO SIT THE INTRA UK TRANSFER TEST This Application MUST be lodged by the end of JULY for the

More information

Data Protection. Standard Operating Procedure

Data Protection. Standard Operating Procedure Data Protection Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised as

More information

FREEDOM OF INFORMATION REQUEST

FREEDOM OF INFORMATION REQUEST FREEDOM OF INFORMATION REQUEST Request Number: F-2013-02578 Keyword: Human Resources Subject: International Secondment of PSNI to Foreign and Commonwealth Request and Answer: Question Under the Freedom

More information

FREEDOM OF INFORMATION ACT 2000 POLICY

FREEDOM OF INFORMATION ACT 2000 POLICY FREEDOM OF INFORMATION ACT 2000 POLICY PURPOSE Explanatory Notes Governing bodies are responsible for ensuring that schools comply with the Freedom of Information Act 2000 (FoIA). Some aspects, such as

More information

CODE OF PRACTICE FOR COMMUNITY- BASED CCTV SYSTEMS

CODE OF PRACTICE FOR COMMUNITY- BASED CCTV SYSTEMS CODE OF PRACTICE FOR COMMUNITY- BASED CCTV SYSTEMS 1 INTRODUCTION This Code of Practice sets out the basic conditions of use for Community-Based CCTV systems by applicants for the Department of Justice,

More information

European College of Business and Management Data Protection Policy

European College of Business and Management Data Protection Policy European College of Business and Management Data Protection Policy 1. INTRODUCTION 1.1 The European College of Business and Management (ECBM) is committed to full compliance with the Data Protection Act

More information

DURHAM CONSTABULARY POLICY

DURHAM CONSTABULARY POLICY DURHAM CONSTABULARY POLICY Durham Constabulary Freedom of Information Act Publication Scheme Name of Policy Body Worn Video Devices Registry Reference No. DCP 166 Policy Owner Head of Neighbourhood & Partnership

More information

Freedom of Information Act 2000 (FOIA) Environmental Information Regulations 2004 (EIR) Decision notice

Freedom of Information Act 2000 (FOIA) Environmental Information Regulations 2004 (EIR) Decision notice Freedom of Information Act 2000 (FOIA) Environmental Information Regulations 2004 (EIR) Decision notice Date: 03 May 2012 Public Authority: Address: Department of the Environment (Northern Ireland) 10-18

More information

BERMUDA PUBLIC ACCESS TO INFORMATION REGULATIONS 2014 BR 79 / 2014

BERMUDA PUBLIC ACCESS TO INFORMATION REGULATIONS 2014 BR 79 / 2014 QUO FA T A F U E R N T BERMUDA BR 79 / 2014 TABLE OF CONTENTS 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 Citation Interpretation Right of access Provision of access Reasonable search Receipt

More information

2.16 Freedom of Information and Protection of Privacy Act

2.16 Freedom of Information and Protection of Privacy Act POLICY AND PROCEDURE MANUAL Policy Title: Policy Section: Effective Date: Supersedes: FREEDOM OF INFORMATION AND PROTECTION OF PRIVACY ACT ADMINISTRATION 2016 02 18 2014 09 02 Area of Responsibility: VICE

More information

DATA PROTECTION (JERSEY) LAW 2005 CODE OF PRACTICE & GUIDANCE ON THE USE OF CCTV GD6

DATA PROTECTION (JERSEY) LAW 2005 CODE OF PRACTICE & GUIDANCE ON THE USE OF CCTV GD6 DATA PROTECTION (JERSEY) LAW 2005 CODE OF PRACTICE & GUIDANCE ON THE USE OF CCTV GD6 2 DATA PROTECTION (JERSEY) LAW 2005: CODE OF PRACTICE & GUIDANCE ON THE USE OF CCTV PART 1: CODE OF PRACTICE Introduction

More information

Freedom of Information Request to Access a Medical Record

Freedom of Information Request to Access a Medical Record Information for Consumers Freedom of Information Request to Access a Medical Record What Information You Can Access The Victorian Freedom of Information (FOI) Act gives you the right to request access

More information

FREEDOM OF INFORMATION REQUEST

FREEDOM OF INFORMATION REQUEST FREEDOM OF INFORMATION REQUEST Request Number: F-2016-00654 Keyword: Organisational Information/Governance Subject: Policies on Harassment, Assault and Obtaining CCTV Footage Request and Answer: Question

More information

Norfolk and Suffolk Constabularies have considered your request for information and our response is below.

Norfolk and Suffolk Constabularies have considered your request for information and our response is below. Freedom of Information Request Reference N o : FOI 002463-18 I write in connection with your request for information received by Norfolk and Suffolk Constabularies on the 13.07.2018 in which you sought

More information

Making a Freedom of Information request

Making a Freedom of Information request Making a Freedom of Information request What you can expect If you apply for information under the Freedom of Information Act, you have the following rights: The right to be told whether we hold the information;

More information

Data Protection Bill [HL]

Data Protection Bill [HL] [AS AMENDED IN COMMITTEE] CONTENTS PART 1 PRELIMINARY 1 Overview 2 Terms relating to the processing of personal data PART 2 GENERAL PROCESSING CHAPTER 1 SCOPE AND DEFINITIONS 3 Processing to which this

More information

MANUAL V & A WATERFRONT HOLDINGS (PTY) LTD

MANUAL V & A WATERFRONT HOLDINGS (PTY) LTD MANUAL of V & A WATERFRONT HOLDINGS (PTY) LTD Prepared in accordance with Section 51 of the Promotion of Access to Information Act, No 2 of 2000. (Private Body) 1 INTRODUCTION 1.1 The Promotion of Access

More information

Environmental Information Regulations 2004 (EIR) Decision notice

Environmental Information Regulations 2004 (EIR) Decision notice Environmental Information Regulations 2004 (EIR) Decision notice Date: 16 July 2015 Public Authority: Address: Bristol City Council City Hall College Green Bristol BS1 5TR Decision (including any steps

More information

Freedom of Information

Freedom of Information Freedom of Information Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised

More information

Freedom of Information Act 2000 (FOIA) Decision notice

Freedom of Information Act 2000 (FOIA) Decision notice Freedom of Information Act 2000 (FOIA) Decision notice Date: 14 October 2013 Public Authority: Address: Ministry of Justice Data Access and Compliance Unit Ministry of Justice 10 th Floor, 102 Petty France

More information

Decision 021/2005 Mr Michael Collie and the Common Services Agency for the Scottish Health Service

Decision 021/2005 Mr Michael Collie and the Common Services Agency for the Scottish Health Service Mr Agency for the Scottish Health Service Childhood leukaemia statistics in Dumfries and Galloway Reference No: 200500298 Decision Date: 26 May 2010 Kevin Dunion Scottish Information Commissioner Kinburn

More information

FREEDOM OF INFORMATION REQUEST

FREEDOM OF INFORMATION REQUEST FREEDOM OF INFORMATION REQUEST Request Number: F-2009-00835 Keyword: Crime Subject: COVERT HUMAN INTELLIGENCE SOURCES (CHIS) Request and Answer: Question 1 Please advise how much money has been paid to

More information

Freedom of Information Act 2000 (FOIA) Decision notice

Freedom of Information Act 2000 (FOIA) Decision notice Freedom of Information Act 2000 (FOIA) Decision notice Date: 14 October 2015 Public Authority: Address: Birmingham City Council Council House Victoria Square Birmingham B1 1BB Decision (including any steps

More information

Freedom of Information Act 2000 (FOIA) Decision notice

Freedom of Information Act 2000 (FOIA) Decision notice Freedom of Information Act 2000 (FOIA) Decision notice Date: 27 March 2017 Public Authority: Address: London Borough of Sutton ( LBS ) Civic Offices St Nicholas Way Sutton Surrey SM1 1EA Decision (including

More information

Force Communications Centre

Force Communications Centre Force Communications Centre Welfare Checks Policy Version Version 1.1 Policy Version Date 05 April 2018 Policy Review Date 1 st October 2018 Policy Ownership Head of FCC Portfolio Holder Assistant Chief

More information

Freedom of Information Act 2000: Policy

Freedom of Information Act 2000: Policy Freedom of Information Act 2000: Policy Version: Final Version 3 Ratified by: SOG Date ratified: 8 June 2010 Name of originator/author: Lynne Wray Head of Information Governance Name of responsible Information

More information

THE PIGGOTT SCHOOL FREEDOM OF INFORMATION POLICY AND GUIDANCE

THE PIGGOTT SCHOOL FREEDOM OF INFORMATION POLICY AND GUIDANCE THE PIGGOTT SCHOOL...to be a school which inspires and encourages the highest achievement FREEDOM OF INFORMATION POLICY AND GUIDANCE Date last reviewed: Summer term 2017 Responsibility: Headteacher and

More information