Dear all,
How do local authorities deal with the issue
of Data protection and external auditors (currently the Audit
Commission)?
Auditors obviously look at a lot of data,
some of it sensitive personal data (this time they are checking out
leisure memberships and the audit trail regarding this). Are we right to rely on
the fact that they can quote a relevant 'statutory act' and we have to
allow access?
How do you deal with the fact they might
want to take 'personal data' out of the office.
Whilst this is something we maybe should
already have a process for, does anyone have a guidance, advice regarding this?
I have rung the ICO helpline and
unfortunately this time (perhaps understandably) the advice was relatively
generic such as asking what information do you want, why do you want it and what
powers can you have it under?
Any comments greatly
appreciated.
Regards
Steve
______________________________________________________________________________________________________________________
Stephen
Cotterill
Procurement & Technical Officer
x3296
Broxtowe Borough
Council
Resources
Directorate
Council Offices, Foster Avenue,
Beeston, Nottingham, NG9
1AB
Tel: 0115 917
7777
Fax: 0115 917
3577
DISCLAIMER:
This email and any attachments are confidential and intended solely for the use of the individual to whom it is addressed. If you are not the intended recipient be advised that you have received this email in error and that any use, dissemination, forwarding, printing or copying of this email is strictly prohibited.
If you have received this email in error please contact the IT Service Desk at Broxtowe Borough Council on [log in to unmask] or telephone 0115 917 3194.
Senders and recipients of email should be aware that, under current legislation, the contents may be monitored and will be retained. The contents of the email may have to be disclosed in response to a request.
This disclaimer confirms that this email message has been swept for the presence of computer viruses.