Privacy Impact Assessment: Additional ANPR deployment in Bristol.
|
|
- Joshua Holmes
- 7 years ago
- Views:
Transcription
1 Privacy Impact Assessment: Additional ANPR deployment in Bristol. Executive Summary Bristol City Council, in partnership with Avon and Somerset Constabulary, is intending to install automatic number plate recognition (ANPR) cameras across the city of Bristol to capture vehicle movements on key routes through the identification of the vehicle registration mark (VRM) of individual vehicles. The Council will use these cameras to inform its traffic modelling activities and for real-time and historic journey time information through its existing UTMC system. ASP will separately use the ANPR data for crime prevention and investigation purposes. The purpose of this document is to consider the police use of this equipment and does not necessarily reference or interact with the work of the City council. This project is an excellent example of partnership working in order to maximise the benefits of technology and to share the costs from the public purse. The issues of access and use between the partner agencies will be described and managed through a memorandum of understanding or similar type of document; which will be agreed, signed and in place before the cameras go into operation.. In common with other police forces, the Constabulary is committed to operating this technology in an effective way in order to improve both proactive and reactive operations into the disruption, prevention and detection of serious acquisitive, volume and organised crime, public events and major incidents; at a local, cross border, regional and national level. However, it is recognised that a pressing social need still has to be present when considering the deployment of such cameras. The concept of a pressing social need has been used by the ECHR as a basis for assessing whether or not an interference with a qualified right is necessary in a democratic society. Significant consideration has been given to article 8 of the HRA. Article 8 is a qualified right, so in certain circumstances public authorities can interfere with the private life of an individuals if there is a pressing social need for doing so. The constabulary already has access to both fixed and mobile ANPR technology within the greater Bristol area and so initially this project simply replaces some of the existing fixed cameras and adds the equivalent of the same number again in Phase 1. (49 cameras over 14 sites) Over the following two phases, an additional 18 cameras (12 sites) will be added, bringing the total up to 75. The existing 24 capable cameras will no longer used for Police ANPR purposes and revert back to council CCTV monitoring only.. Although this is a significant increase in number the use of ANPR cameras in Bristol has been in place for several years and so it is considered that this additional deployment will only create moderate interference and will be proportionate in terms of the nature, size and geography of the city.
2 Selection of the sites: The sites for ANPR equipment were determined using analysis of a number of key factors, such as; the volume of traffic using the road, whether the road is an arterial route, whether it crosses policing districts, the proximity to crime and criminality hotspots and the levels and patterns of vehicle crime. It also recognised that Bristol is the regular home of several internationally famous events, for example the St Pauls Carnival, the Bristol Balloon Festival and the Bristol Harbour Festival. Such large scale events create their own unique challenges but will all involve large influxes of people and vehicles into, across and out of the city and therefore the availability of a wider spread of properly located ANPR cameras will be invaluable to maintain public safety and to prevent and/or detect potential offences. Some examples of the data which support the policing use of an extended ANPR infrastructure are: Over 2250 crimes committed during 2013/14 have a suspect vehicle linked. This is where the full registration of the vehicle is known and does not include all those offences where a vehicle has been described only (i.e. a large under-estimate). The largest proportions of offences that are linked to a vehicle are volume crimes and include: Making Off Without Payment (14%); Theft from Shops and Stalls (11%); Fraud and Forgery (8%); Possession of Cannabis (8%) and Theft (when not classified elsewhere) (7.7%). Almost without exception, organised criminals in the city use vehicles in the commissioning of their crimes (human trafficking, drugs supply, drug cultivation and extortion). Between 01/01/14 and 31/03/14, 36 IMPACT nominals were linked to the use of a vehicle. These were used to commit 66 crimes within Bristol and across the force. Over half of these (51%) offences involved Theft from Shops and Stalls. Last year, 173 Bristol IMPACT nominals were linked as suspects to 564 crimes committed outside Bristol, including theft from shops (247), TFMV (78), dwelling burglary (65), Theft (when not classified elsewhere) (33) and Burglary in a building other than in a dwelling (26). Where vehicles have been stolen, only around half are subsequently recovered (287 recovered of 554 stolen in Bristol in 2013/14). For phase 1 the analysis identified 14 locations across the central Bristol road network. Each location will have multiple ANPR cameras in use (49 in all). Phases 2 and 3 will see these sites expanded to further locations across the greater Bristol area. These are all overt camera sites and as such appropriate road signage will be in place and each site will be specifically referenced on both the Council and Constabulary web-sites, including the public contact details.
3 Basic Operation Each camera provides a close-up view (CUV) of the selected traffic lane to specifically target the VRM. Infrared illumination is also provided to enhance the VRM capture capability. The ANPR data will then effectively be split into 2 halves: Bristol City Council will use their data for journey time analysis and ultimately traffic control, Avon and Somerset Constabulary will switch directly into Police HQ ANPR back office facility to be used for the purposes of crime detection and prevention. The cameras themselves are fixed in one location and cannot be remotely moved. As well as information being available in real time to officers in any appropriately equipped police vehicles, all ANPR data is constantly monitored by the police via a dedicated consul within the Constabulary Command and Control operation thus providing officers with live time information and identification of hits from the police hotlist database. Why use ANPR? In broad terms the value of ANPR is to: Increase public confidence and reassurance Reduce Crime and Terrorism Increase the detection of offences Reduce Road traffic causalities Make more efficient use of police resources The technology has been proven to be effective over a number of years and provides the capability for proactive and reactive policing from its use. How will success be measured? The Home Office guidance includes a requirement to monitor the ongoing validity of ANPR sites and as such an annual review process will be put into place. Consultation: Is there a need for a Privacy Impact assessment? ANPR captures vehicle registration numbers and this represents a level of intrusion upon the privacy of road users. The Home Office Guidance (Procedure for the Development and Review of ANPR Infrastructure 2013) does not specifically mandate a requirement for a PIA in this case (because the force s network of ANPR camera is already in place). However, due to the significant rise in numbers it was felt that such a document would be appropriate. See attached screening and assessment material (Appendix A C ). Appendix A
4 Privacy Impact Assessment overview 1 Will the project involve the collection of new information about individuals? No The only difference is that Vehicle Registration Marks (VRM) will be obtained from more locations than previously monitored by ANPR. 2 Will individuals have a choice about whether their vehicle details are recorded on ANPR or not? No - The collection of VRM is automatic at the locations when an individual drives a vehicle at the new locations. The technology captures the movement of vehicles and not of the individual drivers or passengers. 3 Will information about individuals be disclosed to organisations or people who have not previously had routine access to the information? No - Whilst information from new locations may be disclosed it will only be for a policing purpose or where otherwise required for a lawful purpose e.g. to another prosecuting agency. Disclosures of data are managed through force and national policy/procedural guidance. 4 Are you using information about individuals for a purpose it is not currently used for, or in a way it is not currently used? No - The new ANPR infrastructure will provide ANPR data for the same purposes as for the data already obtained from ANPR systems. The increase in the number of the sites will not alter the way in which it is used. 5 Does the project involve you using new technology that might be perceived as being privacy intrusive? For example biometrics or facial recognition. No - ANPR is not new technology however the development of new locations increases the ability for monitoring of vehicle movements and therefore although not new technology the provision of increased capability could be perceived as being potentially privacy intrusive. 6 Will the project result in you making decisions or taking action against individuals in ways that can have a significant impact on them? Yes -The purpose of the proposed development of infrastructure is in order to detect, deter, and disrupt criminality and therefore impact significantly on those involved in such activity. It will not impact on other member of the community. 7 Will the project require you to contact individuals in ways that they may find intrusive? No - There is no specific requirement to contact individuals as a result of the collection of ANPR data, other than where appropriate for a policing purpose e.g. in order to support an investigation. Appendix B
5 Screening assessment Part 1 Assessment of Strategic Privacy risks RISK DESCRIPTION Have the project s privacy impacts been identified? Is there an appreciation of those impacts from the perspectives of all stakeholders? CONSIDERATIONS & MITIGATION Yes. It is fully acknowledged that ANPR has expanded significantly in recent years and that some groups / citizens encourage greater public debate and knowledge about its use. The general privacy related impacts of ANPR deployment include issues such as the numbers of cameras, their position, whether they are temporary / permanent fixtures, how they capture data and finally, what happens to that data. The extension of ANPR in the greater Bristol area will only be used in accordance with the law and the specific privacy related impacts have been identified but are mitigated as set out below. Although data is available to other police forces via the National ANPR Data Centre (NADC), compliance with data protection law and national guidelines (NADC rules) are important factors which underpin the use of ANPR. Strict rules, both locally and nationally are already in operation to manage this. It is recognised that for some, the deployment of ANPR impacts on their privacy and their trust & confidence in the police & the wider state. The public has a right to challenge whether collection of data in this way is really necessary / proportionate. However ANPR already operates in Bristol through fixed and mobile cameras and therefore this is not a new concept. This project is to enhance its capacity and capability in order to maximise the policing benefits for the communities that we serve. Has there been identification and assessment of less privacy-invasive alternatives? The analysis undertaken to identify the sites did so to meet particular needs and as such the same or even similar results can not realistically be expected by the use of other types of systems. The unique nature of ANPR technology and the links between vehicles and crime make it an ideal tool for the required purpose.
6 Has there been an identification of ways in which negative impacts on privacy can be lessened / avoided? Where negative impacts on privacy are unavoidable, is there clarity as to the business need that justifies them? That Personal Data is held on Police Databases and reassurance is required that data is properly managed to limit collateral intrusions to innocent persons privacy. The locations have been identified following specific analysis and therefore broader impact has been reduced i.e. they are being sited because they meet a number of criteria. Data collected from ANPR cameras is not accessible to any other parties other than other authorised law enforcement agencies where the information is required for a lawful purpose. The Back Office Facility (BOF) automatically manages data retention and material is removed from the server at key weed points. Most users can only access 90 days-worth of data. Whilst the BOF holds records for 2 years, only specially authorised staff can access that data and it must be for authorised purposes. The material is subject of controlled access and is not available to all personnel and requests are subject to an audit trail. The Constabulary security vets staff who are employed as police officers and police staff and the Professional Standards Department can audit use of the system to minimise changes of abuse of access to the system. It is the case that a large amount of data is collected and stored. The data is not paired with other information at that point beyond the vehicle number plate and vehicle overview. Personal information is only paired with information that becomes personally identifiable at the point of authorised staff instigating an interest. This requires an approval processes with an audit trail. The data is not the subject of automated scanning or reading and the vast majority of the data will not be viewed and therefore does not routinely intrude on an individual s privacy. The data collected can enable post event investigative evidence gathering and creates the ability to live-react to data at hotspot locations. The gain from having a dataset to view and pick out solely crime related data is significant in delivering an effective policing response which is in accordance with law and necessary to contribute to protecting national security, public safety; preventing crime and to protect the rights and freedoms of others.
7 The Vehicles of Interest List Data. Are the requests for vehicles to be on the hotlist up to date and relevant? Strict rules mean only relevant officers and staff may identify a particular vehicle which is suspected or known as being linked to crime and enter that vehicle and the driver details on to the Vehicles of Interest List. Vehicles on the List will trigger an activation when passing an ANPR camera and in theory cause Police Officers to look for / stop that vehicle. The force has a robust system which limits who and how a vehicle can be placed on the Vehicles of Interest List. Vehicles can only remain on the List by default for 90 days to ensure that in the absence of a response or hit, the vehicle cannot stagnate on a list. Access to the data is robustly controlled. Staff Misusing or Over Accessing the Data Misuse of Police Information constitutes serious misconduct and is robustly dealt with should it ever happen. Auditing systems are in place to deter any such wrong doing and to identify it, should it happen. The force has a proactive capability to review staff s use of systems and flag inappropriate or incorrect use. Wider examples of proactivity and swift action against corruption and inappropriate behaviour exist in the Constabulary.
8 Appendix C Screening Assessment Part 2 Record of Privacy Impact Assessment (PIA) Process PIA SCREENING QUESTIONS Technology Does the project involve new or inherently privacy-invasive technologies? Justification Is the justification for the new datahandling unclear or unpublished? Identity Does the project involve an additional use of an existing identifier? COMMENTS While there is some limited level of intrusion, ANPR technology has been used by Police forces and indeed, the private sector, for many years. The cameras capture number plates ensuring a relatively low level of intrusion of individual privacy providing the location of cameras is proportionate. ANPR already operate within the greater Bristol area but by the Police and by others e.g. large retail outlets. Analysis has been completed to identify and support the justification of this technology. Although the numbers of cameras are increasing the use of ANPR within the city is already established and therefore at a strategic level this is not new processing. As previously mentioned the details will be available on both the City Council and Police websites. The locations are supported by analysis; the type and scope of the camera (unable to be remotely moved and so on) also mitigate any negative impact. The project is comparable with many similar sized cities throughout the UK. Does the project involve use of a new identifier for multiple purposes? No - The cameras are for ANPR use only and capture only vehicle number plates and vehicle overviews albeit each organisation will use the raw data feed for differing purposes.
9 Data Does the project involve new or significantly changed handling of personal data that is of particular concern to individuals? Does the project involve new or significantly changed handling of a considerable amount of personal data about each individual in the database? Does the project involve new or significantly changed handling of personal data about a large number of individuals? Does the project involve new or significantly changed consolidation, interlinking, cross-referencing or matching of personal data from multiple sources? Will the project result in the handling of a significant amount of new data about each person, or significant change in existing data-holdings? Will the project result in the handling of new data about a significant number of people or a significant change in the population coverage? Does the project involve new linkage of personal data with data in other collections, or significant change in data linkages? Only data required for a legitimate policing purpose is used. It takes into account the effect on individuals and their privacy which is aligned with current working practices for the management of ANPR data, including access to data, weeding and retention periods. No. The only data obtained is the vehicle number plate. This is cross matched with number plates on the police vehicle of interest databases with action only being taken when there is a match. No changes to handling of data. No. Only those of police interest are managed further. All sit within current national guidance for the handling and management of ANPR data and the DPA. Back office ANPR functions remain unchanged with clear policies and procedures in place to manage ANPR data. It is anticipated that if there are increased vehicle number plates being read there will be an increase in vehicles of interest being managed. No. The only new data handled will be that of vehicle number plates as they pass through. Further policing checks will only be carried out with those vehicles identified as of policing interest through recognition against a police hotlist or marker. There increased data held will be managed within the strict data retention policy in place locally and nationally. Vehicle number plates will be captured within coverage of the camera. The general population will have their vehicle plates read but only those of police interest will have any further action taken. Data collection and handling fits in with current guidelines and working practices managed by clear and transparent policies and procedure. The data remains in the format it is collected unless police personnel make an enquiry about it for a specific purpose. with access to data strictly controlled by the data owner and supported by force policy and procedure. Other police forces can make a request for data held but only if authorised and demonstrated to be necessary. Such requests are auditable
10 and governed by strict National ANPR Database (NADC) rule Data Handling Does the project involve new or changed data quality assurance processes and standards that may be unclear or unsatisfactory? All data retention, access and weeding is covered by clear and regularly reviewed policy and procedure. These policies are available to all staff involved in the process. Policies and procedures are drafted in line with national protocols, which are public documents. Does the project involve new or changed data security arrangements that may be unclear or unsatisfactory? No. There is no variation to data security arrangements. Data security is managed by policy and procedures are reference above, with are drafted in line with national protocol Does the project involve new or changed data access or disclosure arrangements that may be unclear or permissive? Does the project involve new or changed data retention arrangements that may be unclear or extensive? Exemptions and Exceptions Will the project give rise to new or changed data-handling that is in any way exempt from legislative privacy protections? Does the project relate to data processing which is in any way exempt from legislative privacy protections? This project is in-line with current processes that are regularly reviewed. There is full compliance with national guidance. The retention periods were put in place by the Association of Chief Police Officers (ACPO) following discussions with the ICO. No change to current legislation, policy and procedure. Due consideration is given to the ECHR. All data processing complies with the Managing of Police Information (MOPI) principles and the Data protection Act, with national / force policies and procedures in place to manage risk around use of personal data. Does the project's justification include significant contributions to public security measures? The project contributes to the policing purpose of protecting the public, preventing and detecting crime and public reassurance / confidence. The use of ANPR provides support to the resolution of local, regional and national issues.
11 Does the project involve systematic disclosure of personal data to, or access by third parties that are not subject to comparable privacy regulation? Data is only used for a legitimate policing purpose by employees of the Constabulary,
Template for Automatic Number Plate Recognition (ANPR) Infrastructure Development Privacy Impact Assessment
Template for Automatic Number Plate Recognition (ANPR) Infrastructure Development Privacy Impact Assessment This template is provided to support the police service and other law enforcement agencies (LEA)
More informationBuckinghamshire County Council Transport for Buckinghamshire ANPR Code of Practice
Buckinghamshire County Council Transport for Buckinghamshire ANPR Code of Practice 1 Introduction 1.1 Buckinghamshire County Council (BCC) Transportation Service has Automatic Number Plate Recognition
More informationSurveillance Camera Code of Practice. June 2013
Surveillance Camera Code of Practice June 2013 Surveillance Camera Code of Practice Presented to Parliament Pursuant to Section 30 (1) (a) of the Protection of Freedoms Act 2012 June 2013 London: The Stationery
More informationQuestions and Answers about ANPR systems
Questions and Answers about ANPR systems What is Automatic Number Plate Recognition (ANPR)? ANPR devices work by scanning vehicle registrations and checking them against information stored in databases,
More informationAutomatic Number Plate Recognition (ANPR) Systems
Automatic Number Plate Recognition (ANPR) Systems Code of Practice Date: August 2014 Economy, Enterprise and Environment Directorate Document History Date Author Change 07/01/2014 Business & Enterprise
More informationAutomatic Number Plate Recognition (ANPR) Strategy 2016-2020
Automatic Number Plate Recognition (ANPR) Strategy 2016-2020 Version 1.0 April 2016 Document Control Change Control Version Date Change Author 0.1 2 March 2016 Initial draft version Bill Mandeville 0.2
More informationParliamentary Security Camera Policy
Parliamentary Security Camera Policy Introduction 1) Security cameras are employed in various parts of the Palace of Westminster and its surrounding estate. They are a vital part of the security system
More informationSelf assessment tool. Using this tool
Self assessment tool How well does your organisation comply with the 12 guiding principles of the surveillance camera code of practice? Complete this easy to use self assessment tool to find out if you
More informationPolicy on Public and School Bus Closed Circuit Television Systems (CCTV)
DEPARTMENT OF TRANSPORT Policy on Public and School Bus Closed Circuit Television Systems (CCTV) Responsibility of: Public Transport Division TRIM File: DDPI2010/3680 Effective Date: July 2010 Version
More informationDisclosable under FOIA 2000: Yes Author: T/CI Nick Barker Force / Organisation: BTP Date Created: May 2009 Telephone: 0207 830 8930
Security Classification: NOT PROTECTIVELY MARKED Disclosable under FOIA 2000: Yes Author: T/CI Nick Barker Force / Organisation: BTP Date Created: May 2009 Telephone: 0207 830 8930 Association of Chief
More informationEXPLANATORY MEMORANDUM TO THE DATA RETENTION (EC DIRECTIVE) REGULATIONS 2007. 2007 No. 2199
EXPLANATORY MEMORANDUM TO THE DATA RETENTION (EC DIRECTIVE) REGULATIONS 2007 2007 No. 2199 1. This explanatory memorandum has been prepared by the Home Office and is laid before Parliament by Command of
More informationPS 172 Protective Monitoring Policy
PS 172 Protective Monitoring Policy January 2014 Version 2.0 Statement of legislative compliance This document has been drafted to comply with the general and specific duties in the Equality Act 2010;
More informationOnline Research and Investigation
Online Research and Investigation This document is intended to provide guidance to police officers or staff engaged in research and investigation across the internet. This guidance is not a source of law
More informationPOLICY FOR USE OF CCTV SYSTEM AT BOW SCHOOL OF MATHS AND COMPUTING SCHOOL
POLICY FOR USE OF CCTV SYSTEM AT BOW SCHOOL OF MATHS AND COMPUTING SCHOOL CCTV cameras are now a familiar sight throughout the country. They are one of the many measures being introduced to help prevent
More informationPublic Consultation regarding Data Sharing and Governance Bill. Contribution of Office of the Data Protection Commissioner
Submission of the Office of the Data Protection Commissioner (DPC) on the data-sharing and Governance Bill: - Policy Proposals (dated the 1 st of August 2014) Public Consultation regarding Data Sharing
More informationCivil Aviation Authority. Regulatory Enforcement Policy
Civil Aviation Authority Regulatory Enforcement Policy PAGE 2 REGULATORY ENFORCEMENT POLICY Civil Aviation Authority This policy is subject to a phased implementation process please therefore check applicability
More informationMONMOUTHSHIRE COUNTY COUNCIL DATA PROTECTION POLICY
MONMOUTHSHIRE COUNTY COUNCIL DATA PROTECTION POLICY Page 1 of 16 Contents Policy Information 3 Introduction 4 Responsibilities 7 Confidentiality 9 Data recording and storage 11 Subject Access 12 Transparency
More informationDerbyshire Constabulary CRITICAL INCIDENT POLICY POLICY REFERENCE 06/047. This policy is suitable for Public Disclosure
Derbyshire Constabulary CRITICAL INCIDENT POLICY POLICY REFERENCE 06/047 This policy is suitable for Public Disclosure Owner of Doc: Head of Department, Operational Support Date Approved: December 2007
More informationData Protection Act. Conducting privacy impact assessments code of practice
Data Protection Act Conducting privacy impact assessments code of practice 1 Conducting privacy impact assessments code of practice Data Protection Act Contents Information Commissioner s foreword... 3
More informationDerbyshire Constabulary GUIDANCE ON THE SAFE USE OF THE INTERNET AND SOCIAL MEDIA BY POLICE OFFICERS AND POLICE STAFF POLICY REFERENCE 09/268
Derbyshire Constabulary GUIDANCE ON THE SAFE USE OF THE INTERNET AND SOCIAL MEDIA BY POLICE OFFICERS AND POLICE STAFF POLICY REFERENCE 09/268 This guidance is suitable for Public Disclosure Owner of Doc:
More informationHow To Use A Surveillance Camera Safely
Data protection In the picture: A data protection code of practice for surveillance cameras and personal information Contents Introduction... 3 About this code... 4 What this code covers... 6 Deciding
More informationPolice use of Firearms
CODE OF PRACTICE ON Police use of Firearms and Less Lethal Weapons Contents 1. Introduction 1.1 Purpose of the code 1 1.2 Statutory basis of the code 1 1.3 Weapons covered by this code 2 1.4 Armed support
More informationHow To Improve Safety In Lancashire
Business Case for Area Base Grant Appendix B Theme: Safer Lancashire Board Improvement Initiative Being Proposed Lancashire Constabulary has conducted a review of Automatic Number Plate Recognition (ANPR)
More informationFREEDOM OF INFORMATION REQUEST
FREEDOM OF INFORMATION REQUEST Request Number: F 2011 01978 Keyword: Crime Subject: Cameras Request and Answer: Question There appears to be a load of new cameras appearing outside police stations and
More informationINFORMATION SECURITY MANAGEMENT POLICY
INFORMATION SECURITY MANAGEMENT POLICY Security Classification Level 4 - PUBLIC Version 1.3 Status APPROVED Approval SMT: 27 th April 2010 ISC: 28 th April 2010 Senate: 9 th June 2010 Council: 23 rd June
More informationUniversity of Essex Automatic Number Plate Recognition (ANPR) Policy
& Standards for ANPR Operation at The University of Essex (Colchester Campus) Index 1. Introduction 1.1 System Description 1.2 Purpose of the System 1.3 Operating Principles 1.4 To Whom this Document Applies
More informationContra Costa Community College District Business Procedure 10.57 SECURITY CAMERA OPERATING PROCEDURE
Contra Costa Community College District Business Procedure 10.57 SECURITY CAMERA OPERATING PROCEDURE The District and its colleges are committed to enhancing the quality of life of the community by integrating
More informationOffice of the Police and Crime Commissioner for Avon and Somerset and Avon and Somerset Constabulary
Office of the Police and Crime Commissioner for Avon and Somerset and Avon and Somerset Constabulary Internal Audit Report () FINAL Risk Management: Follow Up of Previous Internal Audit Recommendations
More informationHuman Resources and Data Protection
Human Resources and Data Protection Contents 1. Policy Statement... 1 2. Scope... 2 3. What is personal data?... 2 4. Processing data... 3 5. The eight principles of the Data Protection Act... 4 6. Council
More informationSCOTTISH CHILDREN S REPORTER ADMINISTRATION
Part 1 - Policy for Fraud Prevention, Detection and Investigation 1. Introduction 1.1 SCRA like other public bodies, has a duty to conduct its affairs in a responsible and transparent way and to take into
More informationSURVEILLANCE AND PRIVACY
info sheet 03.12 SURVEILLANCE AND PRIVACY Info Sheet 03.12 March 2012 This Information Sheet applies to Victorian state and local government organisations that are bound by the Information Privacy Act
More informationANTI-MONEY LAUNDERING POLICY AND GUIDANCE NOTES
ANTI-MONEY LAUNDERING POLICY AND GUIDANCE NOTES MARCH 2016 CONTENTS PAGE Policy SADC Anti-Money Laundering Policy Statement 3 Money Laundering Guidance Notes Background 5 Treasury Management 6 Miscellaneous
More informationReport To: Policy and Resources Committee Date: 17 November 2009. Report By: Chief Financial Officer Report No: FIN/63/09/AP/FB
AGENDA ITEM NO. 13 Report To: Policy and Resources Committee Date: 17 November 2009 Report By: Chief Financial Officer Report No: FIN/63/09/AP/FB Contact Officer: Fiona Borthwick Contact No: 01475 712904
More information23/1/15 Version 1.0 (final)
Information Commissioner s Office response to the Cabinet Office s consultation on the proposal to amend the Privacy and Electronic Communications (EC Directive) Regulations 2003 ( PECR ), to enable the
More informationV1.0 - Eurojuris ISO 9001:2008 Certified
Risk Management Manual V1.0 - Eurojuris ISO 9001:2008 Certified Section Page No 1 An Introduction to Risk Management 1-2 2 The Framework of Risk Management 3-6 3 Identification of Risks 7-8 4 Evaluation
More informationCCMT Sponsor ACC Neighbourhood Policing & Partnerships Department/Area Headquarters Section/Sector Neighbourhood Policing & Partnerships
Policy Title Ride-Along/Walk-Along CCMT Sponsor ACC Neighbourhood Policing & Partnerships Department/Area Headquarters Section/Sector Neighbourhood Policing & Partnerships CONTENTS: 1.0 Rationale 2.0 Intention
More informationFormal response to the Consultation Paper: Monitoring and Regulation of Migration
WITHOUT PREJUDICE Formal response to the Consultation Paper: Monitoring and Regulation of Migration 1 October 2004 1. Introduction 1.1. The role of the Office of the Data Protection Registrar ( the Registrar
More informationSomerset County Council - Data Protection Policy - Final
Organisation Title Author Owner Protective Marking Somerset County Council Data Protection Policy - Final Peter Grogan Information Governance Manager Unclassified POLICY ON A PAGE Somerset County Council
More informationGloucester City Council
Gloucester City Council Agenda Item No: COMMITTEE : OVERVIEW & SCRUTINY MANAGEMENT DATE : 30 NOVEMBER 2005 SUBJECT : MAINTENANCE OF AUTOMATIC NUMBER PLATE RECOGNITION CAMERAS WARD : ALL REPORT BY : CABINET
More informationCCTV Cameras Policy. Policy Guidelines
CCTV Cameras Policy Policy Guidelines To assist in providing the safe physical environment a CCTV surveillance system has been installed at Sydney Central on the ground floor. The area covered includes
More informationUNCLASSIFIED. Open Data User Group (ODUG) Driver and Vehicle Licensing Agency (DVLA) Bulk Data August 2013
1. Summary: Open Data User Group (ODUG) Driver and Vehicle Licensing Agency (DVLA) Bulk Data August 2013 The DVLA holds a highly valuable bulk data set covering all vehicles in the UK. It currently is
More informationInformation Governance Framework. June 2015
Information Governance Framework June 2015 Information Security Framework Janice McNay June 2015 1 Company Thirteen Group Lead Manager Janice McNay Date of Final Draft and Version Number June 2015 Review
More informationA guide to access control for offices
A guide to access control for offices What is access control? Access control provides the ability to control, monitor and restrict the movement of people, assets or vehicles, in, out and round a building.
More informationDATA PROTECTION POLICY
Reference number Approved by Information Management and Technology Board Date approved 14 th May 2012 Version 1.1 Last revised N/A Review date May 2015 Category Information Assurance Owner Data Protection
More informationData Protection Policy
Data Protection Policy Responsible Officer Author Date effective from July 2009 Ben Bennett, Business Planning & Resources Director Julian Lewis, Governance Manager Date last amended December 2012 Review
More informationComparison of internet connection records in the Investigatory Powers Bill with Danish Internet Session Logging legislation
Comparison of internet connection records in the Investigatory Powers Bill with Danish Internet Session Logging legislation We consider that, on balance, there is a case for Internet Connection Records
More informationSTFC Monitoring and Interception policy for Information & Communications Technology Systems and Services
STFC Monitoring and Interception policy for Information & Communications Technology Systems and Services Issue 1.0 (Effective 27 June 2012) This document contains a copy of the STFC policy statements outlining
More informationTo return to the list of Contents, simply click on the line NOT PROTECTIVELY MARKED at the foot of each page.
This PDF file contains interactive links that help you to navigate the document quickly, and to enable you to gain immediate access to all websites listed. Clicking on any of the items in the main list
More informationInquiry Report The Egyptian Community Association in the United Kingdom
Inquiry Report The Egyptian Community Association in the United Kingdom Former Registered Charity Number 1129160 (now removed from the Register of Charities) This is a statement of the results of the Inquiries
More informationData Protection Policy
Data Protection Policy Document Ref: DPA20100608-001 Version: 1.3 Classification: UNCLASSIFIED (IL 0) Status: ISSUED Prepared By: Ian Mason Effective From: 4 th January 2011 Contact: Governance Team ICT
More informationNot Protectively marked
Policy: Removal, Storage & Disposal of Vehicles Policy Approved date: Version 1-07/07/09 Version 2 (Review) 24/04/12 Version 3 Update 12/08/12 Owner: Ch Superintendent, Territorial Policing For release
More informationUNIVERSITY COLLEGE LONDON CCTV POLICY. Endorsed by the Security Working Group - 17 October 2012
UNIVERSITY COLLEGE LONDON CCTV POLICY Endorsed by the Security Working Group - 17 October 2012 Endorsed by the Infrastructure IT Services Strategy Group - 18 October 2012 Reviewed and endorsed (with one
More informationCorporate Risk Management Policy
Corporate Risk Management Policy Managing the Risk and Realising the Opportunity www.reading.gov.uk Risk Management is Good Management Page 1 of 19 Contents 1. Our Risk Management Vision 3 2. Introduction
More informationRecords Management Plan. April 2015
Records Management Plan April 2015 Prepared in accordance with the Public Records (Scotland) Act 2011 and submitted to the Keeper of the Records of Scotland for their agreement on 28 April 2015 (Revised
More informationUniversity of Birmingham. Closed Circuit Television (CCTV) Code of Practice
University of Birmingham Closed Circuit Television (CCTV) Code of Practice University of Birmingham uses closed circuit television (CCTV) images to provide a safe and secure environment for students, staff
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY Version 1.3 April 2014 Contents 1 POLICY STATEMENT...2 2 PURPOSE....2 3 LEGAL CONTEXT AND DEFINITIONS...2 3.1 Data Protection Act 1998...2 3.2 Other related legislation.....4 3.3
More informationThird Party Security Requirements Policy
Overview This policy sets out the requirements expected of third parties to effectively protect BBC information. Audience Owner Contacts This policy applies to all third parties and staff, including contractors,
More informationInformation Governance Policy
Information Governance Policy Implementation date: 30 September 2014 Control schedule Approved by Corporate Policy and Strategy Committee Approval date 30 September 2014 Senior Responsible Officer Kirsty-Louise
More informationChichester District Council. Corporate Debt Recovery Policy
Chichester District Council Corporate Debt Recovery Policy 1 1. Introduction The Council raises a significant proportion of its total income through local taxes and charges. These sources of income provide
More informationCaedmon College Whitby
Caedmon College Whitby Data Protection and Information Security Policy College Governance Status This policy was re-issued in June 2014 and was adopted by the Governing Body on 26 June 2014. It will be
More informationRisk Management Policy
1 Purpose Risk management relates to the culture, processes and structures directed towards the effective management of potential opportunities and adverse effects within the University s environment.
More information06100 POLICY SECURITY AND INFORMATION ASSURANCE
Version: 5.4 Last Updated: 30/01/14 Review Date: 27/01/17 ECHR Potential Equality Impact Assessment: Low Management of Police Information (MoPI) The Hampshire Constabulary recognises that any information
More informationPolicy for Management of CCTV on Waste Operation Vehicles
Policy for Management of CCTV on Waste Operation Vehicles 1.0 POLICY 1.1 CCTV cameras are fitted to refuse vehicles for the purposes of Health and Safety of employees and members of the public, and for
More informationLGMA Qld Governance and Corporate Planning Village Forum
www.pwc.com.au Fraud Risk Management Fraud Risk Assessments LGMA Qld Governance and Corporate Planning Village Forum March 2015 Agenda Introductions Fraud Risk Management Fraud Statistics s Global Economic
More informationData Protection Act 1998. Guidance on the use of cloud computing
Data Protection Act 1998 Guidance on the use of cloud computing Contents Overview... 2 Introduction... 2 What is cloud computing?... 3 Definitions... 3 Deployment models... 4 Service models... 5 Layered
More informationInformation Governance Policy
Information Governance Policy Document Number 01 Version Number 2.0 Approved by / Date approved Effective Authority Customer Services & ICT Authorised by Assistant Director Customer Services & ICT Contact
More informationCambridgeshire Constabulary. Data protection audit report
Cambridgeshire Constabulary Data protection audit report Executive summary November 2014 1. Background The Information Commissioner is responsible for enforcing and promoting compliance with the Data Protection
More informationmaintenance of CCTV surveillance systems code of practice
maintenance of CCTV surveillance systems code of practice Issue 3 January 2015 For other information please contact: British Security Industry Association t: 0845 389 3889 f: 0845 389 0761 e: info@bsia.co.uk
More informationVideo surveillance policy (PUBLIC)
29 July 2015 EMA/133708/2015 Administration Division POLICY/0046 POLICY/0046 Effective Date: 01/01/2015 Review Date: 01/01/2018 Supersedes: Version 1 1. Introduction and purpose For the safety and security
More informationTitle of the Policy: Surveillance Policy
Title of the Policy: Surveillance Policy Functional Area: University Police Applies To: All Faculty and Staff Policy Reference(s): Number: Version 1.0 Date First Issued: March 15, 2016 Date Last Reviewed:
More informationIslington Data Protection Policy. A council-wide information policy Version 1.1 June 2014
A council-wide information policy Version 1.1 June 2014 Copyright Notification Copyright London Borough of Islington 2014 This document is distributed under the Creative Commons Attribution 2.5 license.
More informationComplaints Policy. Complaints Policy. Page 1
Complaints Policy Page 1 Complaints Policy Policy ref no: CCG 006/14 Author (inc job Kat Tucker Complaints & FOI Manager title) Date Approved 25 November 2014 Approved by CCG Governing Body Date of next
More informationAuditing data protection a guide to ICO data protection audits
Auditing data protection a guide to ICO data protection audits Contents Executive summary 3 1. Audit programme development 5 Audit planning and risk assessment 2. Audit approach 6 Gathering evidence Audit
More informationCorporate Policy and Procedure
Page Page 1 of 9 TAB: SECTION: SUBJECT: ROADS AND TRAFFIC TRAFFIC OPERATIONS CLOSED CIRCUIT TELEVISION (CCTV) TRAFFIC MONITORING SYSTEMS POLICY STATEMENT POLICY PURPOSE The City of Mississauga may install
More informationData Governance in-brief
Data Governance in-brief What is data governance? Data governance is the system of decision rights and accountabilities surrounding data and the use of data. It can involve legislation, organisational
More informationCorporate Policy and Strategy Committee
Corporate Policy and Strategy Committee 10am, Tuesday, 30 September 2014 Information Governance Policies Item number Report number Executive/routine Wards All Executive summary Information is a key asset
More informationVEHICLE LOCATION SYSTEM POLICY. Version 0.2. Paul Robinson, Strategic Director, Richard Kniveton, Fleet and Depot Manager
VEHICLE LOCATION SYSTEM POLICY Version 0.2 Document owner Paul Robinson, Strategic Director, Neighbourhoods Document author Richard Kniveton, Fleet and Depot Manager Document manager Richard Kniveton,
More informationRaising concerns (Whistleblowing) Policy and Procedure
Raising concerns (Whistleblowing) Policy and Procedure The Public Interest Disclosure Act provides strong protection for workers who blow the whistle on or raise a genuine concern about malpractice. The
More informationProtecting betting integrity
Protecting betting integrity October 2013 1 Introduction 1.1 The UK Gambling Commission (the Commission) was set up under the Gambling Act 2005 to regulate commercial gambling in Great Britain. We are
More informationRegulation of Investigatory Powers Act 2000
Regulation of Investigatory Powers Act 2000 Consultation: Equipment Interference and Interception of Communications Codes of Practice 6 February 2015 Ministerial Foreword The abilities to read or listen
More informationClosed Circuit Television (CCTV) code of practice. Based on the publication A Code of Practice for CCTV www.ico.gov.uk
Closed Circuit Television (CCTV) code of practice Based on the publication A Code of Practice for CCTV www.ico.gov.uk Owner: Ian Heywood Last reviewed: July 2011 Contents 1.0 Introduction... 4 2.0 CCTV
More informationDHS / UKvisas Project
for the DHS / UKvisas Project November 14, 2007 Contact Point Elizabeth Gaffin Associate Counsel United States Citizenship and Immigration Services 202-272-1400 Reviewing Official Hugo Teufel III Chief
More informationInformation Governance Strategy & Policy
Information Governance Strategy & Policy March 2014 CONTENT Page 1 Introduction 1 2 Strategic Aims 1 3 Policy 2 4 Responsibilities 3 5 Information Governance Reporting Structure 4 6 Managing Information
More informationEFPIA Principles for the Development of the EU Clinical Trials Portal and Database
Position Paper EFPIA Principles for the Development of the EU Clinical Trials Portal and Database Executive summary EFPIA sees the implementation of the Clinical Trials Regulation 1 as an opportunity to
More informationHow To Protect Decd Information From Harm
Policy ICT Security Please note this policy is mandatory and staff are required to adhere to the content Summary DECD is committed to ensuring its information is appropriately managed according to the
More informationCouncil, 14 May 2015. Information Governance Report. Introduction
Council, 14 May 2015 Information Governance Report Introduction 1.1 The Information Governance function within the Secretariat Department is responsible for the HCPC s ongoing compliance with the Freedom
More informationWe then give an overall assurance rating (as described below) indicating the extent to which controls are in place and are effective.
Good Practice Audit outcomes analysis Police Forces April 2013 to April 2014 This report is based on the final audit reports the ICO completed in the Criminal Justice sector, specifically of Police forces,
More informationReview of DBS Data Retention Policy
Review of DBS Data Retention Policy October 2015 Contents Distribution of Report... 3 EXECUTIVE SUMMARY... 4 Key Observations and Recommendations... 4 DETAILED FINDINGS: DATA RETENTION POLICY REVIEW...
More informationLondon Borough of Brent Joint Regulatory Services ENFORCEMENT POLICY
London Borough of Brent Joint Regulatory Services ENFORCEMENT POLICY Date of implementation: 01/11/05 Issue No:01 Issued by: Stephen Moore Executive approval: 12/09/2005 INTRODUCTION 1. This document sets
More informationImplementation of the EU payment accounts directive: Consultation response
Implementation of the EU payment accounts directive: Consultation response November 2015 Implementation of the EU payment accounts directive: Consultation response November 2015 Crown copyright 2015 This
More informationSUBJECT ACCESS REQUEST PROCEDURE
SUBJECT ACCESS REQUEST PROCEDURE Document History Document Reference: Document Purpose: IG31 This procedure sets out the responsibility for staff when receiving requests for information provided under
More informationHow To Write A Prison Service Plan
ISLE OF MAN PRISON SERVICE CODE OF CONDUCT AND DISCIPLINE Isle of Man Prison Service Code of Conduct and Discipline Contents Statement of Purpose and Values Purpose Prison Service Objectives Values Definition
More informationThe CPS incorporates RCPO. CPS Data Protection Policy
The CPS incorporates RCPO CPS Data Protection Policy Contents Introduction 3 Scope 4 Roles and Responsibilities 4 Processing Criminal Cases 4 Information Asset Owners 5 Information Asset Register 5 Information
More informationPublic Consultation on the Smart Borders Package
Case Id: 20158ac7-eafa-4dda-a61e-cbbd373c5d88 Date: 01/10/2015 09:37:11 Public Consultation on the Smart Borders Package Fields marked with are mandatory. Questions to all contributors You are responding
More informationCorporate Information Security Policy
Corporate Information Security Policy. A guide to the Council s approach to safeguarding information resources. September 2015 Contents Page 1. Introduction 1 2. Information Security Framework 2 3. Objectives
More informationCumbria Constabulary. Business Continuity Planning
Cumbria Constabulary Business Continuity Planning 0 Cumbria Shared Internal Audit Service Images courtesy of Carlisle City Council except: Parks (Chinese Gardens), www.sjstudios.co.uk, Monument (Market
More informationPersonally Controlled Electronic Health Record System: Legislation Issues Paper
Personally Controlled Electronic Health Record System: Legislation Issues Paper Introduction The AMA has reviewed the Personally Controlled Electronic Health Record System: Legislation Issues Paper. The
More informationRECORDS MANAGEMENT POLICY
[Type text] RECORDS MANAGEMENT POLICY POLICY TITLE Academic Year: 2013/14 onwards Target Audience: Governing Body All Staff and Students Stakeholders Final approval by: CMT - 1 October 2014 Governing Body
More informationLONDON DOWNTOWN CLOSED CIRCUIT TELEVISION (CCTV) PROGRAM CODE OF PRACTICE CITY OF LONDON, ONTARIO
LONDON DOWNTOWN CLOSED CIRCUIT TELEVISION (CCTV) PROGRAM CODE OF PRACTICE CITY OF LONDON, ONTARIO Contents Page Number 1. Introduction Page 2 2. Defining the Responsible Persons Page 2 3. Purpose and Principles
More information