LAW ENFORCEMENT ASSISTANCE VODAFONE GLOBAL POLICY STANDARD

Size: px
Start display at page:

Download "LAW ENFORCEMENT ASSISTANCE VODAFONE GLOBAL POLICY STANDARD"

Transcription

1 LAW ENFORCEMENT ASSISTANCE VODAFONE GLOBAL POLICY STANDARD Objective/Risk Create the governance and safeguards necessary to ensure we appropriately balance respect for our customers right to privacy and freedom of expression with other obligations necessary to a free and secure society. Scope and Compliance This Policy Standard applies to all Vodafone companies and joint ventures with an interest of 50% or more, or managed control, and to their employees, contractors, suppliers, and directors. Compliance levels will be monitored on a regular basis and results reviewed by appropriate governance bodies. Any breach will be treated as a serious disciplinary offence and may be subject to disciplinary actions in accordance with the provisions of the relevant local HR policy. Contents 1 The Principles Why is this important? What are the basic requirements? What do we mean by law enforcement authority? What do we mean by assistance? Controls and deliverables required for compliance Governance Committee Vodafone Support Companies and Suppliers Assisting foreign law enforcement authorities Reporting Roles and responsibilities Corporate Security/Legal Privacy Counsel Governance Committee Public Policy/External Affairs Exceptions Supporting documents... 5 Annex 1 - Law enforcement assistance requirements: mandatory assistance... 6 Annex 2 - Law Enforcement Assistance Requirements: Discretionary Assistance... 6 Annex 3 - Law Enforcement Assistance Requirements: Challenging Demands... 7 Page 1 of 7

2 1 The Principles 1.1 Why is this important? Vodafone s Privacy Commitments, as set out in the Code of Conduct, include a commitment to ensure that we balance respect for privacy (including the human rights and civil liberties of our customers) with other obligations necessary to a free and secure society, by working to minimize privacy impacts. 1.2 What are the basic requirements? Our commitment to respect the privacy of our customers must in certain circumstances be balanced with our obligations to cooperate with the governments and law enforcement agencies of the countries in which we operate. When we assist these bodies, we do so under prescribed circumstances and we always follow the requirements laid out here. We will provide assistance to law enforcement authorities only under certain carefully prescribed circumstances, and must follow the requirements applicable to each circumstance: When we are required by law to provide it (mandatory assistance): A country s laws may require us to provide law enforcement assistance. Here, we act only in accordance with Annex 1 Law enforcement assistance requirements: mandatory assistance. When we are not prevented by law from providing it (discretionary assistance): If law enforcement assistance is not mandated by law; and providing assistance would not break a law (for example, an applicable privacy or data protection law), then we may decide to provide assistance in accordance with Annex 2 Law enforcement assistance requirements: discretionary assistance. When we have a legitimate business purpose: To the extent reasonably necessary to protect a legitimate business interest, such as fraud or other crime committed against us, we may provide assistance, but only if doing so would not break a law. When we receive a demand from a law enforcement authority that falls outside these three categories, we must decline to assist or escalate the demand to the Governance Committee to consider challenging it in accordance with Annex 3 Law enforcement assistance requirements: challenging demands. 1.3 What do we mean by law enforcement authority? When we use the term law enforcement authority throughout this document, we mean it broadly. It could include: a) public law enforcement and security authorities (for example, the police, intelligence services, customs or immigration) b) regulatory bodies c) courts and tribunals or other judicial authorities d) any bodies given the status of a law enforcement authority by a relevant local law. 1.4 What do we mean by assistance? When we refer to assisting law enforcement in this document, this includes any of the ways we could be asked to cooperate with them in relation to our business and our networks, for example by: a) disclosing information about our customers or their use of our services b) real-time surveillance or monitoring, such as intercepting voice telephony, messaging content or data traffic c) collecting, retaining or preserving records (for example, Know-Your-Customer obligations), or the systematic use or retention of data on customers use of our services Page 2 of 7

3 d) implementing or developing surveillance capabilities (for example, technical or operational interception or data retention capabilities), or decrypting protected communications e) blocking, filtering, censoring or shutting down networks or telecommunication services like SMS. 2 Controls and deliverables required for compliance Each local market and group entity will ensure processes are in place to comply with the following requirements: 2.1 Governance Committee Vodafone Group and each Local Market shall establish a Governance Committee of senior management. The Governance Committee must: be chaired by the CEO (or a nominee reporting directly to the CEO) and include the Privacy Board Sponsor, Privacy Counsel, the Head of Corporate Security, and representatives from Legal and Government Affairs. This requirement could be met with an existing committee. The Governance Committee will meet at least quarterly to: review the exercise of discretion in accordance with Annex 2 Law enforcement assistance requirements: discretionary assistance. make determinations in accordance with Annex 3 Law enforcement assistance requirements: challenging demands.; and issue directions or guidance in accordance with this Standard. The Governance Committee can decide that their decisions should be used as a precedent for subsequent cases without referral back to the Committee. The CEO is accountable for the decisions of the Governance Committee. 2.2 Vodafone Support Companies and Suppliers Vodafone Support Companies Vodafone Support Companies provide support services to other Vodafone companies and to other external parties; they essentially act as internal or external suppliers. If a Vodafone Support Company receives a demand to provide assistance related to data or services hosted or managed on behalf of another Local Market, the Vodafone Support Company must, to the extent permitted by law: decline to assist the law enforcement authority on the matter promptly notify the appropriate person within the Corporate Security Team and the Privacy Counsel so that the affected Local Market to take control of the demand in accordance with the requirements outlined in this Standard, and promptly notify the nominated contact in Group Security and Group Privacy External Suppliers External suppliers may not reply directly to demands they receive for assistance relating to Vodafone data. To the extent permitted by law, each Vodafone company must ensure that its contracts: Page 3 of 7

4 prohibit suppliers from responding to requests to provide law enforcement assistance; and require suppliers to notify any affected Vodafone company of such requests and allow the affected company to take control of the request. 2.3 Assisting foreign law enforcement authorities Vodafone Local Markets must provide assistance only to the law enforcement authorities of the country in which they are established. If a Local Market receives a request from the authorities of another country, it must decline to assist or refer the request to the Governance Committee to challenge or consider its response in accordance with Annex 3 Law enforcement assistance requirements: challenging demands. 2.4 Reporting The Disclosure Officer shall provide the aggregate number of individual warrants served received in their Local Market relating to lawful intercept and disclosure of communications data, respectfully, to the Group Corporate Security Team for publication in the annual Vodafone Law Enforcement Disclosure Report unless one of the following six circumstances apply: Disclosure unlawful No technical implementation of lawful interception Awaiting guidance government or a relevant agency or authority Unable to obtain guidance from government or a relevant agency or authority Cannot publish Government publishes In which case, the Disclosure Officer shall cite the relevant circumstance in their response to the Group Corporate Security Team. 3 Roles and responsibilities Each Local Market will ensure processes are in place and appropriate responsibilities allocated to meet this Standard. 3.1 Corporate Security/Legal Law enforcement assistance may only be conducted under the supervision of the relevant local Head of Corporate Security or Head of Legal. An appropriate person within the Corporate Security Team is responsible for helping the Privacy Counsel create the quarterly reports required by this Standard. The Head of Corporate Security is responsible for ensuring all employees involved in law enforcement assistance are appropriately trained and supported to conduct their duties in accordance with this Standard. 3.2 Privacy Counsel The Privacy Counsel is solely responsible for determining whether there is a legal obligation to provide law enforcement assistance. If a Local Market does not have such internal expertise available, it is responsible for seeking external legal advice. The Privacy Counsel, with the help of the Corporate Security Team, is responsible for creating the quarterly reports in accordance with this Standard. Page 4 of 7

5 3.3 Governance Committee The Governance Committee is responsible for reviewing the application of law enforcement assistance and issuing appropriate guidance as required by this Standard. 3.4 Public Policy/External Affairs Any external communication of local issues governed by this Policy Standard should be directed through the Local Market s External Affairs Department and Head of Corporate Security in consultation with the Privacy Counsel and Legal Director. Any external communication of issues relating to assisting law enforcement at a Group level should be directed through the Group External Affairs Department, the Director of Corporate Security and the Global Privacy Officer. 4 Exceptions There are no exceptions allowed for this Policy Standard. 5 Supporting documents This Policy Standard is part of the framework created by the privacy requirements of the Code of Conduct and should be guided by our Privacy Commitments. The following documents support this Policy Standard: Annex 1 Law enforcement assistance requirements: mandatory assistance. Annex 2 Law enforcement assistance requirements: discretionary assistance. Annex 3 Law enforcement assistance requirements: challenging demands. Page 5 of 7

6 Annex 1 - Law enforcement assistance requirements: mandatory assistance Vodafone will comply with applicable laws mandating law enforcement assistance. In doing so, each Operating Company is responsible for ensuring that the scope of the applicable law is evaluated by an appropriately qualified and senior lawyer, taking into account international laws and standards regarding the protection of privacy that the relevant country is a party to (e.g. International Covenant on Civil and Political Rights). In particular: i. Applicable laws and demands will be interpreted as narrowly as is lawfully possible to guard against unwarranted or over-broad disclosure or assistance. ii. iii. iv. In the event that a demand or request for law enforcement assistance appears over-broad, unlawful or otherwise inconsistent with applicable law and international laws and standards on privacy, the Operating Company shall seek clarification or modification from authorized officials. This may include requesting clear written communications from the relevant LEA that explains the legal basis for the demand, the name of the requesting LEA entity and the name, title and signature of the authorising official. Where a demand or request for law enforcement assistance is considered to be over-broad, unlawful or otherwise inconsistent with applicable law and international laws and standards on privacy, the decision on whether and how to respond shall be referred to the person responsible for disclosures within the local Corporate Security team (the Disclosures Officer ) and the Privacy Officer for a decision to refuse or challenge the demand, or to exercise discretion in accordance with exceptions to the general principle outlined in the global policy standard. Referrals to the Disclosures Officer and the Privacy Counsel under the previous paragraph shall be recorded, along with relevant details of the demand or request, the decision and the reasons upon which it was based, and made available to the Governance Committee. v. Vodafone will insist upon the relevant LEA observing lawful due process in making any relevant demand or request for law enforcement assistance. Annex 2 - Law Enforcement Assistance Requirements: Discretionary Assistance Vodafone may exercise its discretion to provide law enforcement assistance only where there are substantial grounds to believe that: i. The assistance is necessary and proportionate to prevent an imminent threat to national security or public safety, or the prevention of serious crime or risk to the life of, or serious personal injury to, any person; and ii. iii. iv. The information could not reasonably be obtained through any other route, person or means; and The demand is intended for use solely for legitimate law enforcement purpose; and Appropriate safeguards can be identified and implemented to minimise the intrusion into the privacy of any individuals affected by such assistance; and v. There are no other circumstances present that would cause Vodafone to suspect that the demand represents an unwarranted intrusion into the privacy of Vodafone s customers or users. Page 6 of 7

7 Every decision to exercise discretion should be approved by the Disclosures Officer and the Privacy Counsel. In such cases they are jointly responsible for ensuring that a record is retained, along with relevant details of the demand or request, the decision made and the reasons upon which it was based, classified as C4 and appropriately protected, and made available the Governance Committee. Annex 3 - Law Enforcement Assistance Requirements: Challenging Demands When presented with a law enforcement demand or request that cannot be appropriately handled under one of the three circumstances outlined in paragraph 1.2, the Governance Committee shall take into account the following factors in determining its response: i. the potential beneficial impact of declining or challenging a demand on the privacy of individuals affected; ii. iii. iv. the likelihood of success of such action; the severity of the case; its cost to Vodafone, including the potential personal risk to individuals or Vodafone assets or investments; and v. the representativeness of the case and whether the case is part of a larger trend. Decisions of the Governance Committee under this Annex must be recorded, along with the reasons upon which it is based, the identities of the Governance Committee that approved it, and classified as C4 and appropriately protected. Page 7 of 7

Privacy. Purpose. Scope. Policy. Appendix A

Privacy. Purpose. Scope. Policy. Appendix A Privacy NZQA Quality Management System Policy Appendix A Purpose To ensure NZQA and personnel meet the legal obligations under the Privacy Act 1993 and in relation to its functions under section 246A of

More information

House Standing Committee on Social Policy and Legal Affairs

House Standing Committee on Social Policy and Legal Affairs Australian Broadcasting Corporation submission to the House Standing Committee on Social Policy and Legal Affairs and to the Senate Legal and Constitutional Affairs Committee on their respective inquiries

More information

INVESTIGATION OF ELECTRONIC DATA PROTECTED BY ENCRYPTION ETC DRAFT CODE OF PRACTICE

INVESTIGATION OF ELECTRONIC DATA PROTECTED BY ENCRYPTION ETC DRAFT CODE OF PRACTICE INVESTIGATION OF ELECTRONIC DATA PROTECTED BY ENCRYPTION ETC CODE OF PRACTICE Preliminary draft code: This document is circulated by the Home Office in advance of enactment of the RIP Bill as an indication

More information

AIA Australia Limited

AIA Australia Limited AIA Australia Limited Privacy policies & procedures May 2010 The Power of We AIA.COM.AU AIA Australia Limited Privacy policies & procedures Contents Purpose 3 Policy 3 National Privacy Principles Policy

More information

Inquiry into Comprehensive Revision of the Telecommunications (Interception and Access) Act 1979

Inquiry into Comprehensive Revision of the Telecommunications (Interception and Access) Act 1979 Inquiry into Comprehensive Revision of the Telecommunications (Interception and Access) Act 1979 Northern Territory Police Submission to the Senate Legal and Constitutional Affairs Committee March 2014

More information

REGULATION OF INVESTIGATORY POWERS BILL SECOND READING BRIEFING

REGULATION OF INVESTIGATORY POWERS BILL SECOND READING BRIEFING REGULATION OF INVESTIGATORY POWERS BILL SECOND READING BRIEFING INTRODUCTION 1.1. In its report, Under Surveillance, JUSTICE came to the overall conclusion that the present legislative and procedural framework

More information

Whistleblowing Policy

Whistleblowing Policy Whistleblowing Policy 1. Introduction 1.1 The University of Bristol is committed to maintaining the highest standards of honesty openness and accountability and to conducting its business in a responsible

More information

Telecommunications Information Privacy Code 2003

Telecommunications Information Privacy Code 2003 Telecommunications Information Privacy Code 2003 Incorporating Amendments No 3, No 4, No 5 and No 6 Privacy Commissioner Te Mana Matapono Matatapu NEW ZEALAND This version of the code applies from 2 8

More information

Investigatory Powers Bill

Investigatory Powers Bill Investigatory Powers Bill [AS AMENDED ON REPORT] CONTENTS PART 1 GENERAL PRIVACY PROTECTIONS Overview and general privacy duties 1 Overview of Act 2 General duties in relation to privacy Prohibitions against

More information

Covert Human Intelligence Sources Code of Practice

Covert Human Intelligence Sources Code of Practice Covert Human Intelligence Sources Code of Practice Presented to Parliament pursuant to section 71(4) of the Regulation of Investigatory Powers Act 2000. 2 Covert Human Intelligence Sources Code of Practice

More information

GROUP ANTI-BRIBERY POLICY SUMMARY FOR THIRD PARTY SUPPLIERS

GROUP ANTI-BRIBERY POLICY SUMMARY FOR THIRD PARTY SUPPLIERS GROUP ANTI-BRIBERY POLICY SUMMARY FOR THIRD PARTY SUPPLIERS RATIONALE Group Policy Rationale This Policy has been designed to assist in managing the risk of payments, offers, promises of a bribe (making

More information

APPENDIX. 1. The Equipment Interference Regime which is relevant to the activities of GCHQ principally derives from the following statutes:

APPENDIX. 1. The Equipment Interference Regime which is relevant to the activities of GCHQ principally derives from the following statutes: APPENDIX THE EQUIPMENT INTERFERENCE REGIME 1. The Equipment Interference Regime which is relevant to the activities of GCHQ principally derives from the following statutes: (a) (b) (c) (d) the Intelligence

More information

Child Protection Legislation Amendment (Children s Guardian) Act 2013 No 31

Child Protection Legislation Amendment (Children s Guardian) Act 2013 No 31 New South Wales Child Protection Legislation Amendment (Children s Guardian) Act 2013 Contents Page 1 Name of Act 2 2 Commencement 2 Schedule 1 Amendment of Child Protection (Working with Children) Act

More information

1.2 The ABC will apply the following criteria in determining proportionate complaint handling:

1.2 The ABC will apply the following criteria in determining proportionate complaint handling: ABC Complaint Handling Procedures 1 Principles Good complaint handling is a necessary part of self-regulation. Listening to and responding to complaints and taking action when warranted is important for

More information

Conducting surveillance in a public place

Conducting surveillance in a public place Ministerial Policy Statement Conducting surveillance in a public place Summary It is lawful for the Government Communications Security Bureau (GCSB) and the New Zealand Security Intelligence Service (NZSIS)

More information

Law Enforcement processing (Part 3 of the DPA 2018)

Law Enforcement processing (Part 3 of the DPA 2018) Law Enforcement processing (Part 3 of the DPA 2018) Introduction This part of the Act transposes the EU Data Protection Directive 2016/680 (Law Enforcement Directive) into domestic UK law. The Directive

More information

European College of Business and Management Data Protection Policy

European College of Business and Management Data Protection Policy European College of Business and Management Data Protection Policy 1. INTRODUCTION 1.1 The European College of Business and Management (ECBM) is committed to full compliance with the Data Protection Act

More information

Telekom Austria Group Standard Data Processing Agreement

Telekom Austria Group Standard Data Processing Agreement Telekom Austria Group Standard Data Processing Agreement This Agreement is entered into by and between: I. [TAG Company NAME], a company duly established and existing under the laws of [COUNTRY] with its

More information

The Enforcement Guide

The Enforcement Guide Contents list The Enforcement Guide 1. Introduction Overview 2. The 's approach to enforcement 3. Use of information gathering and investigation powers 4. Conduct of investigations 5. Settlement 6. Publicity

More information

Memorandum of Understanding. between. HM Land Registry. and. Solicitors Regulation Authority (SRA)

Memorandum of Understanding. between. HM Land Registry. and. Solicitors Regulation Authority (SRA) Memorandum of Understanding between HM Land Registry and Solicitors Regulation Authority (SRA) 1 Introduction 1. HM Land Registry (LR) and the Solicitors Regulation Authority (SRA) ("the parties") are

More information

Coordinated text from 10 August 2011 Version applicable from 1 September 2011

Coordinated text from 10 August 2011 Version applicable from 1 September 2011 Coordinated text of the Act of 30 May 2005 - laying down specific provisions for the protection of persons with regard to the processing of personal data in the electronic communications sector and - amending

More information

General Rulebook (GEN)

General Rulebook (GEN) General Rulebook (GEN) GEN VER01.041015 TABLE OF CONTENTS The contents of this module are divided into the following Chapters, Rules and Appendices: Page 1. INTRODUCTION... 4 1.1 Application... 4 1.2 Overview

More information

Code of Practice - Covert Human Intelligence Sources. Covert Human Intelligence Sources. Code of Practice

Code of Practice - Covert Human Intelligence Sources. Covert Human Intelligence Sources. Code of Practice Covert Human Intelligence Sources Code of Practice Regulation of Investigatory Powers (Bailiwick of Guernsey) Law, 2003 Code ofpractice - Covert Human Intelligence Sources COVERT NUItlAN INTELLIGENCE SOURCES

More information

SELECT ILLINOIS RULES OF PROFESSIONAL CONDUCT

SELECT ILLINOIS RULES OF PROFESSIONAL CONDUCT ILLINOIS SUPREME COURT COMMISSION ON PROFESSIONALISM The Buck Stops Here: Ethics and Professionalism for In-House Counsel SELECT ILLINOIS RULES OF PROFESSIONAL CONDUCT The Rules listed below are those

More information

Q. What do the Law Commission and the Ministry of Justice recommend?

Q. What do the Law Commission and the Ministry of Justice recommend? Review of the Search and Surveillance Act 2012 Questions and Answers The Act Q. What does the Search and Surveillance Act do? A. The Act outlines rules for how New Zealand Police and some other government

More information

Policies and Procedures

Policies and Procedures Policies and Procedures QMS3: POL5 Privacy Policy Policy Details Responsible area General Endorsed by CEO Date 22 November 2017 Review date 22 November 2018 Policy Statement At Linx Institute, we are committed

More information

SUPPLIER DATA PROCESSING AGREEMENT

SUPPLIER DATA PROCESSING AGREEMENT SUPPLIER DATA PROCESSING AGREEMENT This Data Protection Agreement ("Agreement"), dated ("Agreement Effective Date") forms part of the ("Principal Agreement") between: [Company name] (hereinafter referred

More information

2. Anti-Bribery and Corruption Policy

2. Anti-Bribery and Corruption Policy 2. Anti-Bribery and Corruption Policy This document sets out the policy of Canary Wharf Group plc and its group of companies (the Group ) in relation to bribery and corruption. It may be amended by the

More information

FUJITSU Cloud Service K5: Data Protection Addendum

FUJITSU Cloud Service K5: Data Protection Addendum FUJITSU Cloud Service K5: Data Protection Addendum May 24, 2018 This Data Protection Addendum (the "Addendum") forms part of the FUJITSU Cloud Service K5: TERMS OF USE (the "Agreement") between the Customer

More information

Releasing personal information to Police and law enforcement agencies: Guidance on health and safety and Maintenance of the law exceptions

Releasing personal information to Police and law enforcement agencies: Guidance on health and safety and Maintenance of the law exceptions Releasing personal information to Police and law enforcement agencies: Guidance on health and safety and Maintenance of the law exceptions October 2017 CONTENTS Purpose of this Guide... 3 Voluntary requests

More information

SUBSIDIARY LEGISLATION DATA PROTECTION (PROCESSING OF PERSONAL DATA IN THE POLICE SECTOR) REGULATIONS

SUBSIDIARY LEGISLATION DATA PROTECTION (PROCESSING OF PERSONAL DATA IN THE POLICE SECTOR) REGULATIONS DATA PROTECTION (PROCESSING OF PERSONAL DATA IN THE POLICE SECTOR) [S.L.440.05 1 SUBSIDIARY LEGISLATION 440.05 DATA PROTECTION (PROCESSING OF PERSONAL DATA IN THE POLICE SECTOR) REGULATIONS 30th September,

More information

Workplace Surveillance Act 2005

Workplace Surveillance Act 2005 Workplace Surveillance Act 2005 As at 20 May 2014 Long Title An Act to regulate surveillance of employees at work; and for other purposes. Part 1 ñ Preliminary 1 Name of Act This Act is the Workplace Surveillance

More information

TERMS FOR TRUST, FIDUCIARY, FOUNDATION, FUND ADMINISTRATION AND CORPORATE SERVICES

TERMS FOR TRUST, FIDUCIARY, FOUNDATION, FUND ADMINISTRATION AND CORPORATE SERVICES TERMS FOR TRUST, FIDUCIARY, FOUNDATION, FUND ADMINISTRATION AND CORPORATE SERVICES These are the Terms for Services provided by the ZEDRA Group in Switzerland. These Terms are effective from 25 May 2018

More information

INVESTIGATORY POWERS BILL EXPLANATORY NOTES

INVESTIGATORY POWERS BILL EXPLANATORY NOTES INVESTIGATORY POWERS BILL EXPLANATORY NOTES What these notes do These Explanatory Notes relate to the Investigatory Powers Bill as brought from the House of Commons on 8. These Explanatory Notes have been

More information

Anti-Fraud, Bribery and Corruption Policy and Response Plan

Anti-Fraud, Bribery and Corruption Policy and Response Plan Anti-Fraud, Bribery and Corruption Policy and Response Plan Ref: Finance 2.1 Version: 3.0 Supersedes: Author (inc Job Title): Ratified by: (Name of responsible Committee) 2.1 Anti-Bribery Policy and Procedure

More information

HAUT-COMMISSARIAT AUX DROITS DE L HOMME OFFICE OF THE HIGH COMMISSIONER FOR HUMAN RIGHTS PALAIS DES NATIONS 1211 GENEVA 10, SWITZERLAND

HAUT-COMMISSARIAT AUX DROITS DE L HOMME OFFICE OF THE HIGH COMMISSIONER FOR HUMAN RIGHTS PALAIS DES NATIONS 1211 GENEVA 10, SWITZERLAND HAUT-COMMISSARIAT AUX DROITS DE L HOMME OFFICE OF THE HIGH COMMISSIONER FOR HUMAN RIGHTS PALAIS DES NATIONS 1211 GENEVA 10, SWITZERLAND Mandates of the Special Rapporteur on the promotion and protection

More information

PRIVACY POLICY. 1. OVERVIEW MEGT is committed to protecting privacy and will manage personal information in an open and transparent way.

PRIVACY POLICY. 1. OVERVIEW MEGT is committed to protecting privacy and will manage personal information in an open and transparent way. Page 1 of 10 1. OVERVIEW MEGT is committed to protecting privacy and will manage personal information in an open and transparent way. MEGT will fulfil its obligations under the Privacy Amendment (Enhancing

More information

CITY OF LONDON INVESTMENT GROUP PLC ( the Company ) AUDIT COMMITTEE TERMS OF REFERENCE

CITY OF LONDON INVESTMENT GROUP PLC ( the Company ) AUDIT COMMITTEE TERMS OF REFERENCE CITY OF LONDON INVESTMENT GROUP PLC ( the Company ) AUDIT COMMITTEE TERMS OF REFERENCE INTRODUCTION On 21 March 2006, the Board resolved, in accordance with the articles of association of the Company,

More information

Act CXII of on the Right of Informational Self-Determination and on Freedom of Information 1 CHAPTER I GENERAL PROVISIONS. 1.

Act CXII of on the Right of Informational Self-Determination and on Freedom of Information 1 CHAPTER I GENERAL PROVISIONS. 1. Act CXII of 2011 on the Right of Informational Self-Determination and on Freedom of Information 1 In order to ensure the right of informational self-determination and the freedom of information, and to

More information

Submission to the Joint Committee on the draft Investigatory Powers Bill

Submission to the Joint Committee on the draft Investigatory Powers Bill 21 December 2015 Submission to the Joint Committee on the draft Investigatory Powers Bill 1. The UN Special Rapporteur on the promotion and protection of the right to freedom of opinion and expression;

More information

Anti-Fraud, Bribery and Corruption Response Policy. Telford and Wrekin Clinical Commissioning Group

Anti-Fraud, Bribery and Corruption Response Policy. Telford and Wrekin Clinical Commissioning Group Anti-Fraud, Bribery and Corruption Response Policy 2018 Telford and Wrekin Clinical Commissioning Group The Anti-Fraud, Bribery and Corruption Policy for Telford and Wrekin Clinical Commissioning Group

More information

WHISTLE BLOWING POLICY

WHISTLE BLOWING POLICY 1 WHISTLE BLOWING POLICY 1 1. What is Whistle Blowing? Whistle blowing inside the work place is the term used to describe reporting by employees or exemployees, of wrongdoing on the part of management,

More information

Privacy Policy. Cabcharge will only collect personal information which is necessary for the operation of its business.

Privacy Policy. Cabcharge will only collect personal information which is necessary for the operation of its business. Privacy Policy Cabcharge Australia Limited ( Cabcharge ) is subject to the Australian Privacy Principles pursuant to the Privacy Act 1988 as amended by the Privacy Amendment (Enhancing Privacy Protection)

More information

H. R (1) AMENDMENT. Chapter 121 of title 18, United States Code, is amended by adding at the end the following: Required preservation

H. R (1) AMENDMENT. Chapter 121 of title 18, United States Code, is amended by adding at the end the following: Required preservation DIVISION V CLOUD ACT SEC. 101. SHORT TITLE. This division may be cited as the Clarifying Lawful Overseas Use of Data Act or the CLOUD Act. SEC. 102. CONGRESSIONAL FINDINGS. Congress finds the following:

More information

Privacy Act; System of Records: Legal Case Management Records, State- to amend an existing system of records, Legal Case Management Records,

Privacy Act; System of Records: Legal Case Management Records, State- to amend an existing system of records, Legal Case Management Records, This document is scheduled to be published in the Federal Register on 06/22/2016 and available online at http://federalregister.gov/a/2016-14828, and on FDsys.gov Billing Code: 4710-08 DEPARTMENT OF STATE

More information

Regulation of Investigatory Powers Act 2000

Regulation of Investigatory Powers Act 2000 ch2300a00a 01-08-00 22:01:07 ACTA Unit: paga RA Proof 20.7.2000 Regulation of Investigatory Powers Act 2000 CHAPTER 23 ARRANGEMENT OF SECTIONS Part I Communications Chapter I Interception Unlawful and

More information

Data Processing Agreement

Data Processing Agreement Data Processing Agreement This Data Processing Agreement ( DPA ) forms an integral part of, and is subject to, the AppsFlyer Services Agreement or the AppsFlyer Terms of Use available at https://www.appsflyer.com/terms-use,

More information

PRIVACY MANAGEMENT PLAN

PRIVACY MANAGEMENT PLAN PRIVACY MANAGEMENT PLAN September 2015 Contents 1. Introduction... 3 1.2 Purpose... 3 1.3 Scope... 3 1.3 Section 41 Directions... 3 1.4 Complaints... 4 2. Definitions... 4 2.1 Personal Information... 4

More information

Joint Committee on the Draft Investigatory Powers Bill Information Commissioner s submission

Joint Committee on the Draft Investigatory Powers Bill Information Commissioner s submission Joint Committee on the Draft Investigatory Powers Bill Information Commissioner s submission Executive Summary: The draft bill is far-reaching with the potential to intrude into the private lives of individuals.

More information

Translation from Finnish Legally binding only in Finnish and Swedish Ministry of the Interior, Finland

Translation from Finnish Legally binding only in Finnish and Swedish Ministry of the Interior, Finland Translation from Finnish Legally binding only in Finnish and Swedish Ministry of the Interior, Finland Act on the Processing of Personal Data by the Border Guard (579/2005; amendments up to 1072/2015 included)

More information

Audit Committee Terms of Reference

Audit Committee Terms of Reference Audit Committee Terms of Reference 1. Membership 1.1. Members of the Committee shall be appointed by the Board, on the recommendation of the Nomination Committee in consultation with the Chairman of the

More information

Mandate of the Special Rapporteur on the promotion and protection of the right to freedom of opinion and expression

Mandate of the Special Rapporteur on the promotion and protection of the right to freedom of opinion and expression HAUT-COMMISSARIAT AUX DROITS DE L HOMME OFFICE OF THE HIGH COMMISSIONER FOR HUMAN RIGHTS PALAIS DES NATIONS 1211 GENEVA 10, SWITZERLAND www.ohchr.org TEL: +41 22 917 9359 / +41 22 917 9407 FAX: +41 22

More information

Data Protection Act 1998 Policy

Data Protection Act 1998 Policy Data Protection Act 1998 Policy Responsibility for Policy: Relevant to: University Secretary All Staff, Students and Academic Partnerships Approved by: SMT in September 2016 Responsibility for Document

More information

PRIVACY POLICY DOT DM Corporation Commonwealth of Dominica cctld (.dm)

PRIVACY POLICY DOT DM Corporation Commonwealth of Dominica cctld (.dm) PRIVACY POLICY DOT DM Corporation Commonwealth of Dominica cctld (.dm) Modified: 08 May 2018 V1.2 1. 1.1 OBJECTIVES: The objectives of this Privacy Policy are: (1) To disclose to the Registrant, and in

More information

Trócaire General Terms and Conditions for Procurement

Trócaire General Terms and Conditions for Procurement Trócaire General Terms and Conditions for Procurement Version 1 February 2014 1. Contractors Obligations 1.1 The Contractor undertakes to perform its obligations arising from this Agreement with due care,

More information

ENFORCEMENT GUIDE STATEMENT OF PRINCIPLES & GUIDANCE ON THE EXERCISE OF ENFORCEMENT POWERS. September

ENFORCEMENT GUIDE STATEMENT OF PRINCIPLES & GUIDANCE ON THE EXERCISE OF ENFORCEMENT POWERS. September ENFORCEMENT GUIDE September 2018 STATEMENT OF PRINCIPLES & GUIDANCE ON THE EXERCISE OF ENFORCEMENT POWERS - 1 - GLOSSARY OF TERMS AML/ATF Anti-Money Laundering & Anti-Terrorist Financing The AML/ATF The

More information

World Bank Group Directive

World Bank Group Directive World Bank Group Directive Staff Rule 3.00 - Office of Ethics and Business Conduct (EBC) Bank Access to Information Policy Designation Public Catalogue Number EXC10.03-DIR.111 Issued September 15, 2016

More information

A Message to Legal Personnel

A Message to Legal Personnel A Message to Legal Personnel Pursuant to the Sarbanes-Oxley Act of 2002, the SEC adopted Part 205, an extensive set of rules that impose new obligations on attorneys (both in-house attorneys and outside

More information

The Speak Up procedure is made available in several languages.

The Speak Up procedure is made available in several languages. Speak Up procedure The Speak Up procedure is made available in several languages. Royal FrieslandCampina N.V. Stationsplein 4, 3818 LE Amersfoort The Netherlands T +31 33 713 3333 www.frieslandcampina.com

More information

Access to Personal Information Procedure

Access to Personal Information Procedure Purpose of The sixth principle of the Data Protection Act 1998 gives rights to individuals in respect of the personal data that organisations hold about them. The Act says that: Personal data shall be

More information

Purpose specific Information Sharing Agreement. Community Safety Accreditation Scheme Part 2

Purpose specific Information Sharing Agreement. Community Safety Accreditation Scheme Part 2 Document Information Summary Partners ISA Ref: As Part 1 An agreement to formalise the information sharing arrangements for the purpose of specific Information sharing pursuant to Crime and Disorder reduction

More information

Privacy Policy. This Privacy Policy sets out the Law Society's policies in relation to the management of Personal Information.

Privacy Policy. This Privacy Policy sets out the Law Society's policies in relation to the management of Personal Information. Privacy Policy Law Society of South Australia Privacy Policy The Law Society of South Australia (Law Society or we, us or our) deals with information privacy in accordance with the Privacy Act 1988 (Cth)

More information

Whistle Blowing Policy

Whistle Blowing Policy Great Bedwyn CE VC Primary School Whistle Blowing Policy Date of Last Review: November 2015 Date to be Reviewed: Will stand until LA changes apply Review Body: Full Governing Body 1 Whistle Blowing Policy

More information

Memorandum of Understanding. between. The Legal Aid Agency (LAA) and. Solicitors Regulation Authority (SRA)

Memorandum of Understanding. between. The Legal Aid Agency (LAA) and. Solicitors Regulation Authority (SRA) Memorandum of Understanding between The Legal Aid Agency (LAA) and Solicitors Regulation Authority (SRA) 1 Introduction 1. The Legal Aid Agency (LAA) and the Solicitors Regulation Authority (SRA) ( the

More information

Cybercrime Legislation Amendment Bill 2011

Cybercrime Legislation Amendment Bill 2011 Cybercrime Legislation Amendment Bill 2011 Joint Select Committee on Cyber-Safety 14 July 2011 GPO Box 1989, Canberra ACT 2601, DX 5719 Canberra 19 Torrens St Braddon ACT 2612 Telephone +61 2 6246 3788

More information

Memorandum of Understanding. between. Solicitors Regulation Authority. and. The Claims Management Regulation Unit (CMR)

Memorandum of Understanding. between. Solicitors Regulation Authority. and. The Claims Management Regulation Unit (CMR) Memorandum of Understanding between Solicitors Regulation Authority and The Claims Management Regulation Unit (CMR) Introduction 1. The Claims Management Regulation Unit (CMR) and the Solicitors Regulation

More information

Whistleblowing & Serious Misconduct Policy

Whistleblowing & Serious Misconduct Policy King s Norton Boys School Whistleblowing & Serious Misconduct Policy We recognise that children cannot be expected to raise concerns in an environment where staff fail to do so. All staff should be aware

More information

General Data Protection Regulation

General Data Protection Regulation General Data Protection Regulation Bar Council Guide for Barristers and Chambers Purpose: Scope of application: Issued by: To assist barristers and sets of chambers in their compliance with the GDPR All

More information

Orient Cement Limited. Whistle Blower Policy

Orient Cement Limited. Whistle Blower Policy Orient Cement Limited Whistle Blower Policy 1. INTRODUCTION Section 177 (9) of the Companies Act, 2013 read with Rule 7 of the Companies (Meeting of Board and its Powers) Rules, 2014 and Clause 49 of the

More information

Law Commission Review of the Search and Surveillance Act 2012

Law Commission Review of the Search and Surveillance Act 2012 Law Commission Review of the Search and Surveillance Act 2012 Contact Person: John Hancock Senior Legal Adviser New Zealand Human Rights Commission johnh@hrc.co.nz 1 Law Commission Review of the Search

More information

Guidance on Telecommunications Directories Information Covering the Fair Processing of Personal Data

Guidance on Telecommunications Directories Information Covering the Fair Processing of Personal Data Information Covering the Fair Processing of Personal Data Published: April 2015 Brunel House, Old Street, St.Helier, Jersey, JE2 3RG Tel: (+44) 1534 716530 Email: enquiries@dataci.org Guidance on Telecommunications

More information

MERITOCRACY PRIVACY POLICY. Updated on March 27, 2017.

MERITOCRACY PRIVACY POLICY. Updated on March 27, 2017. MERITOCRACY PRIVACY POLICY Updated on March 27, 2017. 1. What the Privacy Policy is. This privacy policy (hereinafter "Privacy Policy ) refers to www.meritocracy.is website, including the areas dedicated

More information

Council of the European Union Brussels, 1 February 2017 (OR. en)

Council of the European Union Brussels, 1 February 2017 (OR. en) Council of the European Union Brussels, 1 February 2017 (OR. en) 5884/17 INFORMATION NOTE From: Legal Service LIMITE JUR 58 JAI 83 DAPIX 36 TELECOM 28 COPEN 27 CYBER 14 DROIPEN 12 To: Permanent Representatives

More information

Brussels, 16 May 2006 (Case ) 1. Procedure

Brussels, 16 May 2006 (Case ) 1. Procedure Opinion on the notification for prior checking received from the Data Protection Officer (DPO) of the Council of the European Union regarding the "Decision on the conduct of and procedure for administrative

More information

Guidance for Children s Social care Staff around the use of Police Protection

Guidance for Children s Social care Staff around the use of Police Protection Guidance for Children s Social care Staff around the use of Police Protection This Guidance has been issued in response to concerns raised at the Inspection of Safeguarding and Looked After Children Services

More information

IMPERIAL COLLEGE LONDON ORDINANCE D8. THE DISCIPLINARY PROCEDURE This Ordinance is made pursuant to Part III of the Appendix to the College s Statutes

IMPERIAL COLLEGE LONDON ORDINANCE D8. THE DISCIPLINARY PROCEDURE This Ordinance is made pursuant to Part III of the Appendix to the College s Statutes IMPERIAL COLLEGE LONDON ORDINANCE D8 THE DISCIPLINARY PROCEDURE This Ordinance is made pursuant to Part III of the Appendix to the College s Statutes INTRODUCTION 1. This Disciplinary Procedure shall apply

More information

Protection of Freedoms Bill. Delegated Powers - Memorandum by the Home Office. Introduction

Protection of Freedoms Bill. Delegated Powers - Memorandum by the Home Office. Introduction Protection of Freedoms Bill Delegated Powers - Memorandum by the Home Office Introduction 1. This Memorandum identifies the provisions of the Protection of Freedoms Bill which confer powers to make delegated

More information

MENTOR ENGAGEMENTS MASTER AGREEMENT

MENTOR ENGAGEMENTS MASTER AGREEMENT [THE MENTOR S NAME], reg. no. [NUMBER], (the Mentor ), [POSTAL ADDRESS], and Nordic Growth Market NGM AB, reg. no. 556556-2138, ( NGM ), Mäster Samuelsgatan 42, 111 57 STOCKHOLM, (jointly the Parties,

More information

the general policy intent of the Privacy Bill and other background policy material;

the general policy intent of the Privacy Bill and other background policy material; Departmental Disclosure Statement Privacy Bill This departmental disclosure statement for the Privacy Bill seeks to bring together in one place a range of information to support and enhance the Parliamentary

More information

Holy Trinity Catholic School. Whistle Blowing Policy 2017 BIRMINGHAM CITY COUNCIL WHISTLEBLOWING POLICY 2015 ADOPTED BY HOLY TRINITY CATHOLIC SCHOOL

Holy Trinity Catholic School. Whistle Blowing Policy 2017 BIRMINGHAM CITY COUNCIL WHISTLEBLOWING POLICY 2015 ADOPTED BY HOLY TRINITY CATHOLIC SCHOOL Holy Trinity Catholic School Whistle Blowing Policy 2017 BIRMINGHAM CITY COUNCIL WHISTLEBLOWING POLICY 2015 ADOPTED BY HOLY TRINITY CATHOLIC SCHOOL Introduction 1.1 Birmingham City Council is committed

More information

Plea for referral to police for investigation of alleged s.1 RIPA violations by GCHQ

Plea for referral to police for investigation of alleged s.1 RIPA violations by GCHQ 16th March 2014 The Rt. Hon Dominic Grieve QC MP, Attorney General, 20 Victoria Street London SW1H 0NF c.c. The Rt. Hon Theresa May, Home Secretary Dear Mr. Grieve, Plea for referral to police for investigation

More information

CCG CO06: Anti-Fraud, Bribery and Corruption Policy

CCG CO06: Anti-Fraud, Bribery and Corruption Policy Corporate CCG CO06: Anti-Fraud, Bribery and Corruption Policy Version Number Date Issued Review Date V2 17/03/2016 01/09/2016 Prepared By: Consultation Process: Formally Approved: Policy Adopted From:

More information

Data Processing Agreement

Data Processing Agreement Data Processing Agreement This Data Protection Addendum ("Addendum") forms part of the Master Subscription Agreement ("Principal Agreement") between: (i) Inspectlet ("Vendor") acting on its own behalf

More information

CONSULTATIVE COUNCIL OF EUROPEAN PROSECUTORS (CCPE)

CONSULTATIVE COUNCIL OF EUROPEAN PROSECUTORS (CCPE) CCPE(2015)3 Strasbourg, 20 November 2015 CONSULTATIVE COUNCIL OF EUROPEAN PROSECUTORS (CCPE) Opinion No.10 (2015) of the Consultative Council of European Prosecutors to the Committee of Ministers of the

More information

DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE

DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE DATA PROTECTION ACT 1998 SUPERVISORY POWERS OF THE INFORMATION COMMISSIONER MONETARY PENALTY NOTICE To: The Data Supply Company Ltd Of: 2 Church Close, Wythall, Birmingham, B47 6JQ 1. The Information Commissioner

More information

Law Enforcement Disclosure Report. Legal Annexe June Vodafone Power to you

Law Enforcement Disclosure Report. Legal Annexe June Vodafone Power to you Law Enforcement Disclosure Report Legal Annexe June 2014 Vodafone Power to you Contents Law Enforcement Disclosure Report Legal Annexe Contents 3 Introduction A-E 5 Albania Albania 16 Czech Republic 8

More information

Telecommunications (Interception Capability and Security) Bill

Telecommunications (Interception Capability and Security) Bill Government Bill Explanatory note General policy statement This Bill repeals and replaces the Capability) Act 2004. The main objectives of the Bill are to ensure that the interception obligations imposed

More information

OTrack Data Processing Terms

OTrack Data Processing Terms BACKGROUND These Personal Data Processing Terms (the Agreement ) are entered into between Optimum Records Limited ( Optimum ) and the school using the services provided by Optimum (the School ) whose details

More information

ANTI BRIBERY AND CORRUPTION POLICY

ANTI BRIBERY AND CORRUPTION POLICY ANTI BRIBERY AND CORRUPTION POLICY 1. POLICY STATEMENT 1.1 The Foundation takes a zero tolerance approach to bribery and corruption and will uphold all applicable laws relevant to countering bribery and

More information

THE DATA PROTECTION BILL (No. XIX of 2017) Explanatory Memorandum

THE DATA PROTECTION BILL (No. XIX of 2017) Explanatory Memorandum THE DATA PROTECTION BILL (No. XIX of 2017) Explanatory Memorandum The object of this Bill is to repeal the Data Protection Act and replace it by a new and more appropriate legislation which will strengthen

More information

Safeguarding your drinking water quality

Safeguarding your drinking water quality Safeguarding your drinking water quality Enforcement Policy February 2015 Introduction The Drinking Water Quality Regulator for Scotland (DWQR) is the independent regulator of drinking water for Scotland.

More information

PROCEDURE (Essex) / Linked SOP (Kent) Data Protection. Number: W 1011 Date Published: 24 November 2016

PROCEDURE (Essex) / Linked SOP (Kent) Data Protection. Number: W 1011 Date Published: 24 November 2016 1.0 Summary of Changes 1.1 This procedure/sop has had an additional paragraph added at 3.8.6 relating to data processing of information by direct access to Athena. 2.0 What this Procedure/SOP is About

More information

Telecommunications Carriers Forum. Code for the Transfer of Telecommunications Services ( The Customer Transfer Code )

Telecommunications Carriers Forum. Code for the Transfer of Telecommunications Services ( The Customer Transfer Code ) Telecommunications Carriers Forum Code for the Transfer of Telecommunications Services ( The Customer Transfer Code ) Version Number and Status: Final Approved by the Commerce Commission Version Date:

More information

CCTV CODE OF PRACTICE

CCTV CODE OF PRACTICE EDINBURGH NAPIER UNIVERSITY CCTV CODE OF PRACTICE Introduction The monitoring, recording, holding and processing of images of identifiable individuals constitutes personal data as defined by the Data Protection

More information

PLEASE READ CAREFULLY BEFORE AGREEING TO THE TERMS AND CONDITIONS

PLEASE READ CAREFULLY BEFORE AGREEING TO THE TERMS AND CONDITIONS PLEASE READ CAREFULLY BEFORE AGREEING TO THE TERMS AND CONDITIONS This is a legal Agreement, as amended from time to time, between you ( the Client ) and CHAS 2013 Limited, whose company number is 08466203

More information

WHISTLE BLOWING POLICY

WHISTLE BLOWING POLICY WHISTLE BLOWING POLICY CONTENTS 1. INTRODUCTION ------------------------------------------------------------------------------------------------- 2 2. PURPOSE ---------------------------------------------------------------------------------------------------------

More information

Regulation of Investigatory Powers Bill

Regulation of Investigatory Powers Bill Regulation of Investigatory Powers Bill EXPLANATORY NOTES Explanatory Notes to the Bill, prepared by the Home Office, will be published separately as Bill. EUROPEAN CONVENTION ON HUMAN RIGHTS Mr Secretary

More information

EMIR PORTFOLIO RECONCILIATION, DISPUTE RESOLUTION AND DISCLOSURE. (2) (full legal name of company) (the Counterparty).

EMIR PORTFOLIO RECONCILIATION, DISPUTE RESOLUTION AND DISCLOSURE. (2) (full legal name of company) (the Counterparty). EMIR PORTFOLIO RECONCILIATION, DISPUTE RESOLUTION AND DISCLOSURE THIS AGREEMENT is dated as of [INSERT] and is made BETWEEN: (1) HSBC UK BANK PLC (HSBC); and (2) (full legal name of company) (the Counterparty).

More information

APPLICATION FOR COMMUNICATIONS DATA (UNDER THE DATA PROTECTION ACT 1998) RESTRICTED

APPLICATION FOR COMMUNICATIONS DATA (UNDER THE DATA PROTECTION ACT 1998) RESTRICTED Page 1 of 6 Notes to Applicant: The request is subject to the provisions of the Data Protection Act 1998. Unlawful disclosure to any person not entitled to receive it may result in prosecution. The Single

More information

Memorandum of Understanding. between. Royal Institution of Chartered Surveyors (RICS) and. Solicitors Regulation Authority (SRA)

Memorandum of Understanding. between. Royal Institution of Chartered Surveyors (RICS) and. Solicitors Regulation Authority (SRA) Memorandum of Understanding between Royal Institution of Chartered Surveyors (RICS) and Solicitors Regulation Authority (SRA) 1 Introduction 1. The Royal Institution of Chartered Surveyors (RICS) and the

More information