Broom, Doreen on Tuesday, April 05, 2005 at 11:46 AM said:-
> We are in the process of installing a new HR/Payroll system.
> The new system will hold details of an employee's sickness
> records and any disciplinary details etc. Do Internal Audit
> have an automatic right of access to this type of
> information? I am tended to refuse but am sure I would get
> my knuckles wrapped.
Internal audit, the same as any other user, should have access only to the
personal data which are adequate relevant and not excessive for the audit
being conducted, and the audit being conducted should be properly authorised
by those whom have the authority to so authorise an audit of the data in
question.
Ian W
> -----Original Message-----
> From: This list is for those interested in Data Protection
> issues [mailto:[log in to unmask]] On Behalf Of
> Broom, Doreen
> Sent: Tuesday, April 05, 2005 11:46 AM
> To: [log in to unmask]
> Subject: Internal Audit Access
>
>
> All
>
> I would appreciate your views on this. Internal Audit had
> access to our old payroll system which was solely all
> information relating to employees' salary, NI, Tax etc.
>
> We are in the process of installing a new HR/Payroll system.
> The new system will hold details of an employee's sickness
> records and any disciplinary details etc. Do Internal Audit
> have an automatic right of access to this type of
> information? I am tended to refuse but am sure I would get
> my knuckles wrapped.
>
> Doreen
> Doreen Broom
> Access to Information Officer
> Scottish Borders Council
> Tel: 01835 826516
> Fax: 01835 825041
>
>
>
> ********************************************************************
> * This email is privileged, confidential and subject to copyright. *
> * Any unauthorised use or disclosure of its content is prohibited. *
> * The views expressed in this communication may not necessarily *
> * be the views held by Scottish Borders Council. *
> * Please be aware that any email sent or received by the Council *
> * may require to be disclosed by the Council under the provisions *
> * of the Freedom of Information (Scotland) Act 2002. *
> ********************************************************************
>
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> All archives of messages are stored permanently and are
> available to the world wide web community at large at
> http://www.jiscmail.ac.uk/lists/data-protection.html
> If you wish to leave this list please send the command
> leave data-protection to [log in to unmask]
> All user commands can be found at : -
> http://www.jiscmail.ac.uk/help/commandref.htm
> Any queries about sending or receiving message please send to
> the list owner
> [log in to unmask]
> (all commands go to [log in to unmask] not the list please)
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving message please send to the list owner
[log in to unmask]
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|