Data Protection. Standard Operating Procedure
|
|
- Howard Shepherd
- 6 years ago
- Views:
Transcription
1 Data Protection Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised as guidance or instruction by any police officer or employee as it may have been redacted due to legal exemptions Owning Department: Version Number: Information Management 3.00 Date Published: 07/11/2017 Version 3.00
2 Compliance Record Equality and Human Rights Impact Assessment (EqHRIA) Date Completed / Reviewed: Information Management Compliant: Health and Safety Compliant: Publication Scheme Compliant: 26/07/2017 Yes Yes Yes Version Control Table Version History of Amendments Approval Date 1.00 Initial approved version 14/03/ No change to content, updated to new template. 04/11/ Cyclical review. SOP fully rewritten. 06/11/2017 Please Note: Version 3.00 of the Data Protection SOP contains changes so significant from that published as v2.00 dated 04/11/2016 that it should be regarded as having been completely revised. Consequently, changes from v2.00 are not highlighted in yellow and readers should therefore take care to read all sections when referring to this document. Version
3 Contents 1. Purpose 2. Background 3. Criminal Offences under the Data Protection Act Purposes for which Personal Data are Processed 5. Accessing Police Scotland Systems 5.1 Personal Data within Police Scotland Systems to which Access is Permitted 5.2 Personal Data within Police Scotland Systems to which Access is not Permitted 5.3 Personal Data Accessed Through Normal Working Practices 6. Disclosure of Personal Data Held Within Police Scotland Systems 7. Action Taken on Suspected Breaches of the Act Section Concerns Regarding Conduct of Others 9. How Officers and Staff Can Obtain Their Personal Data held by Police Scotland 10. Further Advice and Guidance Appendices Appendix A Appendix B Appendix C Appendix D Appendix E List of Associated Legislation List of Associated Reference Documents List of Associated Forms Glossary of Terms Contact Details Version
4 1. Purpose 1.1 This Standard Operating Procedure (SOP) supports the following Police Service of Scotland, (hereafter referred to as Police Scotland), policies for Data Protection Employee Relations 1.2 The purpose of this document is to provide all officers and staff of Police Scotland with clear guidance on the correct use of the personal data held, examples of misuse and details of the offences under the Data Protection Act 1998 (the Act) that can be committed when personal data are misused. 2. Background 2.1 All officers and staff are bound by the Data Protection Act 1998, Human Rights Act 1998 and the Computer Misuse Act It is the responsibility of all officers and staff to comply with all SOPs and policies which underpin compliance with these Acts. These are listed in Appendix B. 2.3 All personal data held by Police Scotland are governed by the Act. All officers and staff are responsible for ensuring that the personal data they process are dealt with in accordance with the Act. Personal data must be accessed, used, disclosed and retained in accordance with the specified business procedures relating to the individual roles of officers and staff. 2.4 To understand their responsibilities it is necessary for officers and staff to be familiar with certain terms within the Act. These are: data controller a data controller decides the purposes for which, and the manner in which personal data will be processed. (See the definition of processing below.) The Chief Constable is the data controller for all the personal data held by Police Scotland. personal data data which relate to a living individual who can be identified in any way from that data, or from that data when linked to any other information held and which identifies an individual. This can apply when statistical data are merged. It also applies to vehicle registrations and other numerical references e.g. Police National Computer Identification (PNC ID), Criminal History System (CHS) number, the System to Co-ordinate Personnel and Establishment (SCoPE) Police Scotland Identifier (PSI) or other Unique Reference Number (URN). data subject an individual who is the subject of personal data. Version
5 processing (in relation to personal data) includes accessing, sharing, obtaining, recording, retaining, retrieving, altering, consulting, using and disclosing personal data and relates to personal data held in any form, e.g. images, digital or electronic or hard copy. The definition means that anything done with personal data held by Police Scotland must be dealt with in accordance with the provisions of the Act. 3. Criminal Offences under the Data Protection Act It is an offence under Section 55 of the Act, for a person to knowingly or recklessly, without the consent of the data controller to: a) obtain or disclose personal data or the information contained within personal data, or b) procure the disclosure to another person of the information contained in personal data. 3.2 It is also an offence to sell or offer to sell personal data obtained in contravention of the above section of the Act. 3.3 It is a common misconception that it is only unauthorised disclosure of personal data which is an offence. However, unauthorised accessing of personal data is also an offence, even if no subsequent disclosure is made. 3.4 Section 5.2 below provides guidance on what constitutes unauthorised access. 3.5 Section 6 provides information on what constitutes unauthorised disclosure of personal data. 3.6 All suspected breaches of the Act will be reported to the Crown Office and Procurator Fiscal Service (COPFS), or dealt with in accordance with agreed protocols. See Section Purposes for which Personal Data are Processed 4.1 Personal data are processed by Police Scotland for: all aspects of policing the provision of services to support policing the provision of administration and ancillary support to policing. 4.2 To view these in detail, see the Police Scotland notification on the Information Commissioner's website. 4.3 All officers and staff will receive training specific to the relevant systems and processes they use and may consist of on the job training. Version
6 5. Accessing Police Scotland Systems 5.1 Personal Data within Police Scotland Systems to which Access is Permitted Access to personal data within Police systems, whether held electronically or in manual records is permitted by the Chief Constable to enable officers and staff to carry out their specific roles within their business areas The permission to access a system extends only to the specific records within that system which need to be accessed to allow officers and staff to carry out their role Certain officers and staff, as part of their specific roles are permitted to access records of other employees of Police Scotland. Examples of these are, Anti Corruption Unit (ACU), Information Management (IM) Professional Standards Department (PSD), People and Development (P&D), and Information Communications Technology (ICT) In all such cases, the access is limited to those records necessary for the purpose of carrying out the duties of the role Officers and staff may access their own SCoPE record and the SCoPE records for other personnel within Police Scotland for whom they have management responsibilities or when required for P&D or for administrative or business purposes. 5.2 Personal Data within Police Scotland Systems to which Access is Not Permitted Officers and staff do not have permission to access any record which is not necessary for the purposes of their job role. Accessing such records may constitute a criminal offence. (See section 3). Such records include: records of people known to them through their personal life*, even if requested to by such a person; (see also paragraph 5.3 below relating to accessing such records through the normal course of the job role) records to trace a person, vehicle or address for personal reasons, records of any other police employee including their own; (but see 5.1 above) accessing any record out of curiosity, or due to an interest in a specific type of case, e.g. sexual or violent, or because a case is high profile *The term personal life relates to their life outside the Force but is not intended to include a person with whom officers and staff have a passing acquaintance. It is not a chance meeting with a person which may be repeated from time to time. Version
7 5.2.3 Subject to paragraph below, officers and staff should not be allowed to be involved in an investigation relating to anyone known to them through their personal life, except in the role of a witness if necessary, and under no circumstances should they attempt to access the records of the investigation Accessing records contrary to the instructions above may constitute a criminal offence and will be investigated by PSD Should it be necessary for an officer to be involved in an investigation of a person known to them through their personal life, e.g. where no other officer is available, the relevant supervisor must allocate the investigation to another officer as soon as possible. In any cases of doubt, guidance should be sought from PSD/ACU Any unsuccessful unauthorised attempts to access data will be considered a breach of professional behaviour and may be investigated under the relevant conduct/disciplinary procedures. This includes attempts to access data (i.e. searches) where there is no record in existence, access to the record has been restricted or access was unsuccessful for any other reason. Police Scotland has the ability and right to monitor access or attempts to access the data it holds These controls are not designed to restrict officers and staff from performing their roles. A reasonable test to apply is to ask Taking account of the instructions within this document, can I justify accessing this record for a specific lawful purpose? If there is any doubt, then do not access the record. Instead guidance should be sought from the relevant line manager, IM, PSD or ACU. The contact details are in Appendix E. 5.3 Personal Data Accessed Through Normal Working Practices If during the course of carrying out their role, an officer or member of staff discovers that they have accessed the record of an individual known to them through their personal life, they must immediately log out of the record relating to that person, bring it to the attention of their supervisor, and provide them with evidence in support of why the record was accessed. The supervisor will then take action as in paragraph and The exception to this is when accessing the information is necessary for an ongoing incident or emergency, and the supervisor must be notified immediately after the event This action is necessary for the protection of the individual officer or member of staff should there be any question of why the record was accessed The supervisor should keep a record of the report and can seek advice from PSD if required. Version
8 5.3.4 The supervisor must allocate the work to another officer or member of staff unless it is not possible due to exceptional circumstances, e.g. there is no one else available to whom the work can be allocated. Permission to continue with the work must be authorised by an officer not below the rank of at least Inspector or by a senior police staff manager not below Band G and at least one rank/grade above the individual concerned. The authorisation must be recorded and available in an auditable format. 6. Disclosure of Personal Data held within Police Scotland Systems 6.1 Information must only be disclosed when it is lawful to do so. 6.2 Officers and staff will be trained for their roles (see paragraph 4.3) and this will include guidance, when relevant to the role, on sharing information routinely with a variety of external bodies/partner organisations such as Local Authorities. 6.3 When there is any question or doubt as to whether the information should be shared, advice must be sought from the relevant supervisor or Information Management. It must not be assumed that because an external body/partner asks for the information, that they are entitled to have it. Further guidance can be obtained from the Information Sharing Protocols SOP. 6.4 The Data Protection Act does not apply to the personal data of the deceased, but it does apply to the living relatives of, or other people who had been involved with the deceased. Care must be taken therefore not to breach the Act by making unlawful disclosures regarding these persons when making disclosures relating to a deceased person Unlawful disclosure of personal data is that which is made knowingly or recklessly and without the consent of the data controller. For example, a disclosure which does not form part of a business process, or is made to a person who is not authorised to have it, (such as a disclosure of an investigation to the person under investigation) is a criminal offence and therefore strictly forbidden. 7. Action Taken on Suspected Breaches of the Act Section All suspected breaches of the Data Protection Act, (either unlawful access or disclosure) will either be: reported to the Crown Office and Procurator Fiscal Service (COPFS) Complaints about the Police Department (CAAPD) or will be dealt with in accordance with agreed protocols. Version
9 If referred to COPFS, CAAPD will decide whether there are to be criminal proceedings. 7.2 For officers below the rank of Assistant Chief Constable, regardless of whether COPFS decides to prosecute, a breach of the Act can also constitute a breach of the Standards of Professional Behaviour and amount to misconduct or gross misconduct. Any such breach will be referred to PSD for consideration of conduct proceedings under the relevant legislation. The regulations to which this paragraph relates are: The Police (Conduct) (Scotland) Regulations 1996, The Police Service of Scotland (Conduct) Regulations 2013, and/or The Police Service of Scotland (Conduct) Regulations For senior officers, i.e. Assistant Chief Constable, Deputy Chief Constable and Chief Constable, a breach of the Act can also constitute a breach of the Standards of Professional Behaviour and amount to misconduct or gross misconduct and will be dealt with in accordance with the relevant legislation, i.e. The Police (Conduct) (Senior Officers) (Scotland) Regulations 1996, The Police (Conduct) (Senior Officers) (Scotland) Regulations 1999 The Police Service of Scotland (Senior Officers) (Conduct) Regulations For police staff a breach of the Act can also constitute a breach of the Disciplinary SOP and/or the Code of Conduct. Any breach of the Code of Conduct will be investigated and assessed, and considered in line with the Disciplinary SOP. 7.5 Any breach may also be reported to the Information Commissioner s Office (ICO) in accordance with the ICO guidance. 8. Concerns Regarding Conduct of Others 8.1 If an officer or member of staff has any concerns regarding the conduct of a colleague or a person known to them through their personal life, they must not access/attempt to access any records of that individual but instead they can use any of the following channels to report them: through line management channels; directly to ACU or PSD; through the Integrity Matters link on the intranet which also provides guidance on what should be reported. This can be done anonymously if preferred; through Crimestoppers. Version
10 9. How Officers and Staff can obtain their Personal Data held by Police Scotland 9.1 As already stated, officers and staff can access their own SCoPE record. If however they want to know what other personal data is held by Police Scotland in relation to them they can obtain it by making a Subject Access Request (SAR) using Police Scotland Form and submitting it to the e- mail address on the form. 9.2 There is no charge for providing information to an officer or member of staff if it relates to them as an employee of Police Scotland, e.g. information held by ACU, P&D or PSD. If however the request relates to personal data which may be held on Police systems such as PNC, CHS or other crime systems, a fee of will be required. 9.3 Guidance on how to make a SAR is on the Police Scotland website. Further information can also be obtained from IM. Contact details are in Appendix E. 10. Further Advice and Guidance Further advice and guidance regarding the contents of this SOP can be obtained from IM, ACU or PSD. Contact details are in Appendix E. Version
11 Appendix A List of Associated Legislation The Data Protection Act 1998 The Police (Conduct) (Scotland) Regulations 1996 The Police Service of Scotland (Conduct) Regulations 2013 The Police Service of Scotland (Conduct) Regulations 2014 The Police (Conduct) (Senior Officers) (Scotland) Regulations 1996 The Police (Conduct) (Senior Officers) (Scotland) Regulations 1999 The Police Service of Scotland (Senior Officers) (Conduct) Regulations 2013 The Human Rights Act 1998 Public Records (Scotland) Act 2011 Version
12 Appendix B Policies Data Protection Policy Employee Relations Policy List of Associated Reference Documents Standard Operating Procedures and Internet Security SOP Government Protective Marking Scheme (GPMS) SOP ICT User Access Security SOP Information Security SOP IT Security SOP Record Retention SOP Secure Disposal and Destruction of Data SOP Requests for Personal Information from External Bodies SOP Information Sharing Protocols SOP ICT Acceptable Use of Computer Systems SOP Mobile Data and Remote Working SOP Security Incident Reporting and Management SOP Disciplinary SOP Guidance Code of Conduct Version
13 Appendix C List of Associated Forms Subject Access Request Form Version
14 Appendix D Glossary of Terms ACU Anti Corruption Unit CHS Criminal History System COPFS Crown Office and Procurator Fiscal Service FOI Freedom of Information ICT Information Communications Technology IM Information Management P&D People and Development PNC Police National Computer PSD Professional Standards Department PSI Police Scotland Identifier SAR Subject Access Request SCoPE System to Co-ordinate Personnel and Establishment SID Scottish Intelligence Database SOP Standard Operating Procedure The Act The Data Protection Act 1998 URN Unique Reference Number Version
15 Appendix E Contact Details Information has been removed due to its content being exempt in terms of the Freedom of Information (Scotland) Act 2002, Section 30, Prejudice to Effective Conduct of Public Affairs. Version
Freedom of Information
Freedom of Information Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised
More informationData Protection REFERENCE NUMBER. IMPLEMENTATION DATE June 2014 NEXT REVIEW DATE: September 2020 RISK RATING
POLICY Security Classification Disclosable under Freedom of Information Act 2000 Yes POLICY TITLE Data Protection REFERENCE NUMBER A031 Version 1.1 POLICY OWNERSHIP DIRECTORATE BUSINESS AREA CHIEF OFFICERS
More informationStandard Operating Procedure
Disclosure Scheme for Domestic Abuse Scotland (DSDAS) Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication
More informationData Protection Policy and Procedure
Data Protection Policy and Procedure Reference No. P09:2007 Implementation date 12022008 Version Number Version 2.0 Reference No: Name. Linked documents Policy Section Procedure Section Yes Yes Suitable
More informationComplaints about the Police Standard Operating Procedure
Complaints about the Police Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be
More informationLiquor Licensing. Standard Operating Procedure
Liquor Licensing Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised as
More informationPSD: COMPLAINTS & MISCONDUCT Policy & Procedures
PSD: COMPLAINTS & MISCONDUCT Policy & Procedures Reference No. DCC/003/14 Policy Sponsor Deputy Chief Constable Policy Owner Head of the Professional Standards Department Policy Author Redacted Business
More informationPROCEDURE (Essex) / Linked SOP (Kent) Data Protection. Number: W 1011 Date Published: 24 November 2016
1.0 Summary of Changes 1.1 This procedure/sop has had an additional paragraph added at 3.8.6 relating to data processing of information by direct access to Athena. 2.0 What this Procedure/SOP is About
More informationSubject Access Requests
Subject Access Requests Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised
More informationVictim and Witness Care. Standard Operating Procedure
Victim and Witness Care Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised
More informationData Protection. Policy & Procedure. Greater Manchester Police
Data Protection Policy & Procedure Greater Manchester Police October 2014 Table of Contents 1. Policy Statement... 1 1.1 Aims... 1 2. Scope... 1 3. Roles & Responsibilities... 2 4. Terms and Definitions...
More informationService of Legal Documents
Service of Legal Documents Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be
More informationDURHAM CONSTABULARY POLICY
DURHAM CONSTABULARY POLICY Durham Constabulary Freedom of Information Act Publication Scheme Name of Policy Body Worn Video Devices Registry Reference No. DCP 166 Policy Owner Head of Neighbourhood & Partnership
More informationCommunity Advisors. Standard Operation Procedure
Community Advisors Standard Operation Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised
More informationSuspension from Duty Standard Operating Procedure
Suspension from Duty Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised
More informationSCOTTISH POLICE AUTHORITY CORPORATE GOVERNANCE FRAMEWORK DECEMBER 2017
SCOTTISH POLICE AUTHORITY CORPORATE GOVERNANCE FRAMEWORK DECEMBER 2017 Approved 15 December 2016 Last Review August 2017 Next Review August 2018 Version 1.2 Approved 19 December 2017 1 Version Control
More informationNOT PRTOECTIVELY MARKED
Meeting Date Location Pacific Quay, Glasgow Title of Paper Police Scotland Whistleblowing Progress Report Item Number 8.1 Presented By Chief Superintendent Mark Hargreaves Recommendation to For Noting
More informationRequests for Personal Information from External Bodies
Requests for Personal Information from External Bodies Standard Operating Procedure otice: This document has been made available through the Police Service of Scotland Freedom of Information Publication
More informationScottish Police Federation
Scottish Police Federation 5 Woodside Place Glasgow G3 7QF JCC Circular 28 of 2018 Ref: CS/KB 26 June 2018 Attachments: Court Change Guidance Doc, Court Change EqHRIA, Mandatory Consultation Feedback,
More informationDriver Improvement Scheme. Standard Operating Procedure
Driver Improvement Scheme Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised
More informationDISCLOSURE & BARRING SERVICE (DBS) PROCEDURE
DISCLOSURE & BARRING SERVICE (DBS) PROCEDURE Authorised Professional Practice (APP) APP is developed and owned by the College of Policing (the professional body for policing) and can be accessed online.
More informationWEST MIDLANDS POLICE Force Policy Document
WEST MIDLANDS POLICE Force Policy Document POLICY TITLE: POLICY REFERENCE NO: GIFTS, GRATUITIES & HOSPITALITY POLICY PS/06 Executive Summary The purpose of this document is to inform all West Midland Police
More informationindependent and effective investigations and reviews PIRC/00328/17 APRIL 2018 Report of a Complaint Handling Review in relation to Police Scotland
independent and effective investigations and reviews PIRC/00328/17 APRIL 2018 Report of a Complaint Handling Review in relation to Police Scotland What we do We obtain all material information from Police
More informationStop and Search. Standard Operating Procedure
Stop and Search Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised as
More informationAccess to Personal Information Procedure
Purpose of The sixth principle of the Data Protection Act 1998 gives rights to individuals in respect of the personal data that organisations hold about them. The Act says that: Personal data shall be
More informationDerbyshire Constabulary SIMPLE CAUTIONING OF ADULT OFFENDERS POLICY POLICY REFERENCE 06/122. This policy is suitable for Public Disclosure
Derbyshire Constabulary SIMPLE CAUTIONING OF ADULT OFFENDERS POLICY POLICY REFERENCE 06/122 This policy is suitable for Public Disclosure Owner of Doc: Head of Department, Criminal Justice Date Approved:
More informationCharities & Not-for-Profits Overview of Data Protection Law
Charities & Not-for-Profits Overview of Data Protection Law The Data Protection Law provides a framework for the processing of data relating to individuals that serves to balance the needs of organisations
More informationELECTRONIC MONITORING OF OFFENDERS. Standard Operating Procedures
ELECTRONIC MONITORING OF OFFENDERS Standard Operating Procedures Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should
More informationData Protection Policy
Data Protection Policy Co-ordinator Will Taylor Date of Completion June 2017 Date of adoption by Governors June 2017 Date to be reviewed June 2019 Introduction The new Data Protection Act 1998 (EU Directive
More informationUnacceptable, Persistent or Unreasonable Actions by Complainers
Unacceptable, Persistent or Unreasonable Actions by Complainers Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information
More informationCORRUPT CONDUCT AND PUBLIC INTEREST DISCLOSURE POLICY
CORRUPT CONDUCT AND PUBLIC INTEREST DISCLOSURE POLICY DOCUMENT CONTROL Document Name: Version: 002 Corrupt Conduct and Public Interest Disclosure Policy Approved by: Board Date approved: 27 August 2015
More informationDecision 120/2007 Mr Russell Findlay and the Chief Constable of Fife Constabulary
Decision 120/2007 Mr Russell Findlay and the Chief Constable of Fife Constabulary Request for copy of investigator s report and expert reports Applicant: Mr Russell Findlay Authority: Chief Constable of
More informationINFORMATION SHARING AGREEMENT This document is NOT PROTECTIVELY MARKED
PURPOSE PARTNERS The purpose of this Information Sharing Agreement is to facilitate the lawful exchange of data in order to comply with the statutory duty on Chief Police Officers and relevant agencies
More informationPRIVACY MANAGEMENT PLAN
PRIVACY MANAGEMENT PLAN September 2015 Contents 1. Introduction... 3 1.2 Purpose... 3 1.3 Scope... 3 1.3 Section 41 Directions... 3 1.4 Complaints... 4 2. Definitions... 4 2.1 Personal Information... 4
More informationData Protection Act 1998 Policy
Data Protection Act 1998 Policy Responsibility for Policy: Relevant to: University Secretary All Staff, Students and Academic Partnerships Approved by: SMT in September 2016 Responsibility for Document
More informationOffending by Children
Offending by Children Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised
More informationCCTV CODE OF PRACTICE
EDINBURGH NAPIER UNIVERSITY CCTV CODE OF PRACTICE Introduction The monitoring, recording, holding and processing of images of identifiable individuals constitutes personal data as defined by the Data Protection
More informationSupport for Person Reporting Wrongdoing Policy and Procedure
Support for Person Reporting Wrongdoing Policy and Procedure Reference No. P09:2000 Implementation date September 2000 Version Number 3.7 Reference No: P14:2001 Name. Linked documents Dignity At Work Policy
More informationElection Duties. Standard Operating Procedure
Election Duties Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised as
More informationINFORMATION SHARING AGREEMENT WEST YORKSHIRE POLICE. and LEEDS AND YORK PARTNERSHIP NHS FOUNDATION TRUST
INFORMATION SHARING AGREEMENT WEST YORKSHIRE POLICE and LEEDS AND YORK PARTNERSHIP NHS FOUNDATION TRUST Version 4.0 1 of 14 CONTENTS SUMMARY SHEET 1. INTRODUCTION 2. PURPOSE 3. PARTNER(S) 4. POWER(S) 5.
More informationThese Officers can be contacted by:
July 2013 V1.0 Rhonda Mayer, HR & Governance Manager May 2014 V2.0 Matthew Thornley, Governance & Corporate Information Manager June 2015 V3.0 Matthew Thornley, Governance & Corporate Information Manager
More informationProtection of Freedoms Act 2012
Protection of Freedoms Act 2012 Draft statutory guidance on the making or renewing of national security determinations allowing the retention of biometric data March 2013 Issued Pursuant to Section 22
More informationagainst Members of Staff
Procedural Guidance Security Marking: Police Misconduct and Complaints against Members of Staff Not Protectively Marked Please click on the hyperlink for related Policy Statements 1. Introduction 1.1 This
More informationPurpose specific Information Sharing Agreement. Community Safety Accreditation Scheme Part 2
Document Information Summary Partners ISA Ref: As Part 1 An agreement to formalise the information sharing arrangements for the purpose of specific Information sharing pursuant to Crime and Disorder reduction
More informationindependent and effective investigations and reviews [PIRC/00442/17] [JUNE 2018] Report of a Complaint Handling Review in relation to Police Scotland
independent and effective investigations and reviews [PIRC/00442/17] [JUNE 2018] Report of a Complaint Handling Review in relation to Police Scotland What we do We obtain all material information from
More informationSTUDENT DISCIPLINARY PROCEDURES MAY 2009 CM
STUDENT DISCIPLINARY PROCEDURES MAY 2009 CM154255.1 Institute Student Disciplinary Procedures 1. Purpose 1.1 The purpose of this document is to describe student disciplinary procedures. 2. Scope 2.1 This
More informationVersion No. Date Amendments made Authorised by N/A ACC Hamilton (PSNI)
PURPOSE PARTNERS The purpose of this Information Sharing Agreement is to facilitate the lawful exchange of data in order to comply with the statutory duty on Chief Police Officers and relevant agencies
More informationEuropean College of Business and Management Data Protection Policy
European College of Business and Management Data Protection Policy 1. INTRODUCTION 1.1 The European College of Business and Management (ECBM) is committed to full compliance with the Data Protection Act
More informationPublic Interest Disclosures Procedure
Public Interest Disclosures Procedure Version Approved by Approval date Effective date Next full review 2.4 Deputy Vice-Chancellor Academic 25 July 2017 15 August 2017 October 2015 Procedure Statement
More informationindependent and effective investigations and reviews PIRC/00444/17 October 2018 Report of a Complaint Handling Review in relation to Police Scotland
independent and effective investigations and reviews PIRC/00444/17 October 2018 Report of a Complaint Handling Review in relation to Police Scotland What we do We obtain all the material information from
More informationGuidelines on the Safe use of the Internet and Social Media by Police Officers and Police Staff
RM Guidelines on the Safe use of the Internet and Social Media by Police Officers and Police Staff The Association of Chief Police Officers has agreed to these guidelines being circulated to, and adopted
More informationPRIVACY POLICY. 1. OVERVIEW MEGT is committed to protecting privacy and will manage personal information in an open and transparent way.
Page 1 of 10 1. OVERVIEW MEGT is committed to protecting privacy and will manage personal information in an open and transparent way. MEGT will fulfil its obligations under the Privacy Amendment (Enhancing
More informationINVESTIGATION OF ELECTRONIC DATA PROTECTED BY ENCRYPTION ETC DRAFT CODE OF PRACTICE
INVESTIGATION OF ELECTRONIC DATA PROTECTED BY ENCRYPTION ETC CODE OF PRACTICE Preliminary draft code: This document is circulated by the Home Office in advance of enactment of the RIP Bill as an indication
More informationDBS CHECKS AND EMPLOYING EX- OFFENDERS: GUIDE TO POLICY AND PROCEDURE
NEWPORT COMMUNITY SCHOOL PRIMARY ACADEMY Date Adopted: 16 th July 2015 Author/owner: Resources Committee Anticipated Review: July 2017 DBS CHECKS AND EMPLOYING EX- OFFENDERS: GUIDE TO POLICY AND PROCEDURE
More informationPOLICE SCOTLAND COUNTER CORRUPTION UNIT INDEPENDENT ENQUIRIES AND ORGANISATIONAL LEARNING - UPDATE
16 February 2018 Your Ref: Our Ref: John Finnie MSP Convener Justice Sub-Committee - Policing Room T2.60 The Scottish Parliament EDINBURGH EH99 1SP Alan Speirs Assistant Chief Constable Professionalism
More informationNHS HDL(2002) 23 abcdefghijklm. Health Department Directorate of Performance Management and Finance
abcdefghijklm Health Department Directorate of Performance Management and Finance Dear Colleague FINANCIAL CONTROL: PROCEDURE WHERE CRIMINAL OFFENCES ARE SUSPECTED Summary 1. This Circular updates Circular
More informationindependent and effective investigations and reviews PIRC/00637/17 October 2018 Report of a Complaint Handling Review in relation to Police Scotland
independent and effective investigations and reviews PIRC/00637/17 October 2018 Report of a Complaint Handling Review in relation to Police Scotland What we do We obtain all the material information from
More informationSafeguarding your drinking water quality
Safeguarding your drinking water quality Enforcement Policy February 2015 Introduction The Drinking Water Quality Regulator for Scotland (DWQR) is the independent regulator of drinking water for Scotland.
More informationChild sex offenders disclosure scheme (CSODS)
Contents Child sex offenders disclosure scheme (CSODS) Part one Policy... 2 Chapter 1 Legislation... 2 Chapter 2 Cross border applications... 4 Receiving force... 5 Coordinating force... 5 Responding forces...
More informationMannofield Parish Church. Registered Scottish Charity No: SC (the Congregation ) Data Protection Policy
Mannofield Parish Church Registered Scottish Charity No: SC 001680 (the Congregation ) Data Protection Policy December 2018 CONTENTS 1. Overview 2. Data Protection Principles 3. Personal Data 4. Special
More informationPNC Inspections: National overview report
PNC Inspections: National overview report 4 August 2010 1 Contents Introduction Background National themes Conclusion Annex A Leadership and strategic direction Partnerships Preventing system abuse Performance
More informationPrivacy. Purpose. Scope. Policy. Appendix A
Privacy NZQA Quality Management System Policy Appendix A Purpose To ensure NZQA and personnel meet the legal obligations under the Privacy Act 1993 and in relation to its functions under section 246A of
More informationJULY Scottish Police Authority. complaints audit
JULY 2014 Scottish Police Authority complaints audit 2013-14 section contents 1 background 2 introduction 3 methodology 4 findings and recommendations 5 conclusions 6 summary of recommendations Appendix
More informationOFFICE OF THE POLICE AND CRIME COMMISSIONER FREEDOM OF INFORMATION ACT 2000 PUBLICATION SCHEME
Introduction OFFICE OF THE POLICE AND CRIME COMMISSIONER FREEDOM OF INFORMATION ACT 2000 PUBLICATION SCHEME The Freedom of Information Act gives a general right of access to all types of recorded information
More informationRecording, Weeding and Retention of Information on Criminal History System (CHS)
Recording, Weeding and Retention of Information on Criminal History System (CHS) Version 2.00 2013 Version 2.00 NOT PROTECTIVELY MARKED Contents Document Information... 2 Version Control... 3 Version Distribution...
More informationVersion 1.0 December Complaints Handling Procedures
Version 1.0 December 2014 Complaints Handling Procedures Contents 1. Role of Scottish Police Authority Page 3 2. Complaints Page 4 3. 6 Stage Complaint Handling Process Page 8 Stage 1 Notification of Complaint
More informationDATED DISCIPLINARY RULES AND PROCEDURE AND GRIEVANCE PROCEDURE
DATED ------------ DISCIPLINARY RULES AND PROCEDURE AND GRIEVANCE PROCEDURE 1 CONTENTS DISCIPLINARY RULES AND PROCEDURE 1. Policy statement...3 2. Who is covered by the procedure?...3 3. What is covered
More informationWhistleblowing Policy
Whistleblowing Policy 1. Introduction 1.1 The University of Bristol is committed to maintaining the highest standards of honesty openness and accountability and to conducting its business in a responsible
More informationDecision 063/2012 Mr Drew Cochrane of the Largs and Millport News and the Chief Constable of Strathclyde Police
of the Largs and Millport News and the Chief Constable of Strathclyde Police Name of a deceased person Reference No: 201200104 Decision Date: 2 April 2012 Margaret Keyse Acting Scottish Information Commissioner
More informationDATA PROTECTION POLICY STATUTORY
DATA PROTECTION POLICY MAIDEN ERLEGH TRUST STATUTORY INITIAL APPROVAL July 2017 REVIEW FREQUENCY At least every two years REVIEWED CONTENTS PART ONE: POLICY STATEMENT & OBJECTIVES PART TWO: STATUS OF THE
More informationGENERAL PROTOCOL FOR SHARING INFORMATION BETWEEN AGENCIES IN KINGSTON UPON HULL AND THE EAST RIDING OF YORKSHIRE
GENERAL PROTOCOL FOR SHARING INFORMATION BETWEEN AGENCIES IN KINGSTON UPON HULL AND THE EAST RIDING OF YORKSHIRE 2008 CONTENTS 1. INTRODUCTION Purpose of this document 1-6 2. KEY LEGISLATION AND GUIDANCE
More informationAIA Australia Limited
AIA Australia Limited Privacy policies & procedures May 2010 The Power of We AIA.COM.AU AIA Australia Limited Privacy policies & procedures Contents Purpose 3 Policy 3 National Privacy Principles Policy
More informationin partnership, challenging DOMESTIC ABUSE
in partnership, challenging DOMESTIC ABUSE Joint Protocol Between Association Of Chief Police Officers In Scotland (ACPOS) and Crown Office And Procurator Fiscal Service (COPFS) DOMESTIC ABUSE PURPOSE
More informationANTISOCIAL BEHAVIOUR FIXED PENALTY NOTICES. Standard Operating Procedures
ANTISOCIAL BEHAVIOUR FIXED PENALTY NOTICES Standard Operating Procedures Owning Department: Local Policing Author / Reviewer: XXX Sect 30 (c) Version number: 1.01 Date published: 16/07/2013 Due for review
More informationOFFICIAL MISCONDUCT AND PUBLIC INTEREST DISCLOSURE POLICY
OFFICIAL MISCONDUCT AND PUBLIC INTEREST DISCLOSURE POLICY DOCUMENT CONTROL Document Name: Version: 001 Official Misconduct and Public Interest Disclosure Policy Approved by: Board Date approved: 29 May
More informationPublic Complaints and the Role of the Police Ombudsman
SI Identification Number Policy Ownership SI0517 Legacy & Justice Department Issue Date 26/01/2017 Review Date 5 years from issue date SI0517 Public Complaints and the Role of the Police Ombudsman Governing
More informationPOLICY_POL04_Data Breach DATA BREACH RESPONSE RATIONALE SCOPE RESPONSIBILITY DEFINITIONS POLICY. 1 TLC_policy_POL04_Data Breach_CBA_1.
POL04 RATIONALE SCOPE RESPONSIBILITY DEFINITIONS DATA BREACH RESPONSE A data breach occurs when personal information is lost or subjected to unauthorised access, modification, use or disclosure or other
More informationCrime Investigation. Standard Operating Procedure
Crime Investigation Standard Operating Procedure Notice: This document has been made available through the Police Service of Scotland Freedom of Information Publication Scheme. It should not be utilised
More informationMEMORANDUM OF UNDERSTANDING
9 OCTOBER 2003 MEMORANDUM OF UNDERSTANDING The Insurance Authority of The Hong Kong Special Administrative Region of the People s Republic of China Financial Services Authority United Kingdom Contents
More informationPort Glasgow St Andrew s Data Protection Policy
Port Glasgow St Andrew s Data Protection Policy CONTENTS 1. Overview 2. Data Protection Principles 3. Personal Data 4. Special Category Data 5. Processing 6. How personal data should be processed 7. Privacy
More informationReport of a Complaint Handling Review in relation to Police Scotland
Report of a Complaint Handling Review in relation to Police Scotland independent and effective investigations and reviews independent and effective investigations and reviews Index 1. Role of the PIRC
More informationNot Protectively Marked POLICY AND STANDARD OPERATING PROCEDURES
POLICY AND STANDARD OPERATING PROCEDURES Title CCTV in Custody Suites Standard Operating Procedure Policy Ref. No A007 Corporate Custody Policy SOP(s) Ref. No A010 Version No. 1.1 Senior Officer Lead ACC
More informationSensitive and Personal Records
Victim support Sensitive and Personal Records Information for victims of sexual crimes COPFS Policy on Obtaining Sensitive and Personal Records for use in Criminal Prosecutions This leaflet explains why
More informationMEMORANDUM OF UNDERSTANDING
MEMORANDUM OF UNDERSTANDING between Risk and Intelligence Service Gateway Exchange Team and NHS Protect (England) and NHS Counter Fraud Services (Wales) The Parties (1) Gateway Exchange Team, CEI Cardiff,
More informationFREEDOM OF INFORMATION ACT 2000 SUMMARY GUIDANCE
FREEDOM OF INFORMATION ACT 2000 SUMMARY GUIDANCE This guidance is a short and succinct summary of what you need to know and do about the Freedom of Information Act 2000 (FOIA). This guidance is no substitute
More informationData Protection Policy
Data Protection Policy St Barnabas & St Philip s Church of England Primary School P:\Policies and Documents\Data Protection Policy.docx 1 Responsibility: Contents: It is the responsibility of the Governors
More informationSUBJECT ACCESS REQUEST
DATA PROTECTION ACT 1998 SUBJECT ACCESS REQUEST Procedure Manual Page 1 of 22 Invest NI 1. Introduction 1.1 What is a Subject Access Request? 1.2 Routine Requests 1.3 What is an individual entitled to?
More informationData Protection Policy
Data Protection Policy Perth: Craigie and Moncreiffe CHARITY NO. SC001330 CONTENTS 1. Overview 2. Data Protection Principles 3. Personal Data 4. Special Category Data 5. Processing 6. How personal data
More informationService Procedure THE SEIZURE, RETENTION AND DISPOSAL OF EVIDENCE RELATED PROPERTY
Service Procedure THE SEIZURE, RETENTION AND DISPOSAL OF EVIDENCE RELATED PROPERTY SP Identification Number 9/15 Protective Marking Not Protectively Marked Policy Ownership: Department Service Improvement
More informationData Protection Bill [HL]
[AS AMENDED IN COMMITTEE] CONTENTS PART 1 PRELIMINARY 1 Overview 2 Terms relating to the processing of personal data PART 2 GENERAL PROCESSING CHAPTER 1 SCOPE AND DEFINITIONS 3 Processing to which this
More informationDATA SHARING AND PROCESSING
DATA SHARING AND PROCESSING Capita Business Services Limited March 2016 Version 1.3 TABLE OF CONTENTS: Item Heading Page 1 Data Processing Agreement 2 2 Data Protection Act 1998 2 3 Data Protection Act
More informationWanted Persons SI0118
SI Identification Number Policy Ownership SI0118 Legacy and Justice SI0118 Wanted Persons Issue Date 12/04/2018 Review Date Last Updated Governing Service Policy Cancellation of Classification 5 years
More informationSubject Access Request Procedure
Standard Operating Procedure 3 (SOP 3) Why we have a procedure? Subject Access Request Procedure Individuals have a legal right to see information that the Trust holds about them, subject to certain exemptions
More informationNational Strategy to address the issue of police officers and staff who abuse their position for a sexual purpose
National Strategy to address the issue of police officers and staff who abuse their position for a sexual purpose 2017 Foreword Foreword The public expect and deserve to have trust and confidence in their
More informationDisclosure Barring Service (DBS) Checks & Employing Ex-offenders
Disclosure Barring Service (DBS) Checks & Employing Ex-offenders Category Summary Policy This policy outlines BAPAM s policy and procedures for conducting DBS checks and for recruiting exoffenders. Valid
More informationPolicies and Procedures
Policies and Procedures QMS3: POL5 Privacy Policy Policy Details Responsible area General Endorsed by CEO Date 22 November 2017 Review date 22 November 2018 Policy Statement At Linx Institute, we are committed
More informationData Protection Bill [HL]
[AS AMENDED IN PUBLIC BILL COMMITTEE] CONTENTS PART 1 PRELIMINARY 1 Overview 2 Protection of personal data 3 Terms relating to the processing of personal data PART 2 GENERAL PROCESSING CHAPTER 1 SCOPE
More informationSchools Subject Access Request Procedures
Schools Subject Access Request Procedures Policy reviewed by Academy Transformation Trust on June 2018 This policy links to: Located: Data Protection Policy Freedom of Information Policy Review Date May
More informationCounter-Terrorism Bill
EXPLANATORY NOTES Explanatory notes to the Bill, prepared by the Home Office, will be published separately as HL Bill 6 EN. EUROPEAN CONVENTION ON HUMAN RIGHTS Lord West of Spithead has made the following
More informationIdentity Cards Bill EXPLANATORY NOTES. Explanatory notes to the Bill, prepared by the Home Office, are published separately as Bill 9 EN.
Identity Cards Bill EXPLANATORY NOTES Explanatory notes to the Bill, prepared by the Home Office, are published separately as Bill 9 EN. EUROPEAN CONVENTION ON HUMAN RIGHTS Mr Secretary Clarke has made
More information