Archives, Information Governance and Freedom of Information

Slides:

Advertisements

Similar presentations

Health Records Management Practitioner

Advertisements

Child Safeguarding Standards

Public Records (Scotland) Act 2011 Contracting out services, the quality of record-keeping and accountability Dr Kenneth Meechan Head of Information Governance.

National Update: The information revolution and the 2012 Caldicott Review Simon Richardson – Information Rights Manager.

The UK Freedom of Information Act – A Practical Guide for Academic Researchers Cambridge Wednesday, 16 February 2011.

Preparing Scotland’s first Records Management Plan Ava Wieclawska Records Manager.

Effectively applying ISO9001:2000 clauses 5 and 8

Session No. 3 ICAO Safety Management Standards ICAO SMS Framework

Searching for Information

NHS England & Customer Contact Centre FOI Introduction 2013.

Carol Tullo, The National Archives 14 April 2011 The Checks and Balances of a Transparent Public Sector World of Information.

1 Freedom of Information (Scotland) Act 2002 A strategic view.

Auditing regulatory frameworks for economic assets post-privatisation Bob Holbert, Director Performance Audit Services Group.

WORKSHOP, Nicosia 2-3rd July 2008 “Extension of SAFETY & QUALITY Common Requirements to the EMAC States” Item 3 : Regulatory Context Peter Stastny EUROCONTROL.

Item 5d Texas RE 2011 Budget Assumptions April 19, Texas RE Preliminary Budget Assumptions Board of Directors and Advisory Committee April 19,

Safety Management in Europe European Organisation for the Safety of Air Navigation Dr. Erik Merckx EUROCONTROL Directorate ATM Programmes Head of Business.

Managing Records: Good government, Better business. FOI Presentations to Boards & Committees Cayman Islands National Archive November 2008.

SCHOOLS FINANCE OFFICERS MEETINGS Records Management, “Paper-Lite” Environments and Procedures when a school closes Elizabeth Barber.

Ensuring the Safety of Future Developments

Implementation of the FOI Law Mrs. Carole Excell FOI Coordinator Boards and Committees November 18, 2008.

Information Sharing & Corporate Governance Dave Parsons, Information Governance Manager, City of Cardiff Council.

“The right to know” Scottish Borders Council 27 March 2013 Rosemary Agnew Scottish Information Commissioner And Sarah Hutchison Head of Policy and Information.

Organizations of all types and sizes face a range of risks that can affect the achievement of their objectives. Organization's activities Strategic initiatives.

1 Vereniging van Compliance Officers The Compliance Function in Banks Amsterdam, 10 June 2004 Marc Pickeur CBFA CBFA.

Digital Innovations Glasgow University Archives and Records Management 17 December 2013.

When things go wrong: reducing the risk of FCA enforcement action Birmingham 2016 Insurance and Financial Services Conference Wednesday, 18 June 2016 Jonathan.

National Scheme overview Chris Robertson

Mark Hodgkinson Adult Protection and Review Officer Angus Council January 2014 Assessing Risk Mark Hodgkinson Adult Protection and Review Officer Angus.

ARMA Boston Spring Seminar 2011 Jesse Wilkins, CRM.

Glasgow City Council Glasgow – UK Council of the year PRACTICAL ASPECTS OF DELIVERING INFORMATION AND RECORDS MANAGEMENT – GLASGOW.

BREXIT: The Future of IFRS Customer Care No

General Data Protection Regulation (EU 2016/679)

Accountability & Structured Privacy Management

Embedding the golden threads that lead to quality care every time……

The Importance of an AML Programme

An Overview on Risk Management

Solihull Review of Urgent Care Programme Approach And Governance 2013

Microsoft 365 Get help with regulatory compliance

Governance and Accountability of Policing in Scotland

GDPR – What’s it all about???

Safety Management in Europe

General Data Protection Regulations Preparing for the upcoming changes in data protection law David Jones & Angharad Williams.

GDPR Overview Gydeline – October 2017

GDPR support January GDPR support January 2018.

GDPR Overview Gydeline – October 2017

INTRODUCTION TO GDPR 19/09/2018.

Introduction to GDPR 09/11/2018.

The session will commence at Please mute your microphone

Separated and Unaccompanied Asylum Seeking Children in Scotland

RECORDS AND INFORMATION

Data Protection and GDPR – An introduction for Baptist Churches

Top 10 Tips for GDPR Compliance in Office 365

General Data Protection Regulation

The National Working Group

Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .

Information management and communication

General Data Protection Regulations (GDPR) Training

 GDPR Readiness Quiz Quick Insight: Quick Insight: Quick Insight:

ISO management systems

General Data Protection regulation (GDPR)

COBIT 5: Framework, BMIS, Implementation and future Information Security Guidance Presented by.

Information Governance Part 2

Dr Elizabeth Lomas The General Data Protection Regulation (GDPR): Changing the data protection landscape Dr Elizabeth Lomas

The General Data Protection Regulations 2016

The Public Records (Scotland) Act 2011

No Deal EU Businesses Workshop: New Approach goods and the UK marking

GDPR – One Year On School Business Managers Forum 4 July 2019

General Data Protection Regulation Community Councils

Risk Management NDS Forum June 23rd 2010.

Access to data requirementS

Presentation transcript:

Archives, Information Governance and Freedom of Information Please sir, can I have some more information? ARA Scotland FOISA Core Training Glasgow, 13 February 2017 Archives, Information Governance and Freedom of Information Dr Kenneth Meechan, Head of Asset Governance, Glasgow City Council

Overview Archives and the context of the PR(S)A Specific historical context of Glasgow GCC Information Governance landscape Legal and regulatory framework Drafting the RMP FOI – the sharp end of records management The historical child abuse inquiry EU General Data Protection Regulation

Public Records (S) Act PRSA gets pride of place because it should underpin all your information governance/information management activity Records Management Plan elements include information security and data protection policies (which includes how you manage and control releases under FOI) – so this should be the glue holding all your IG activity together If you don’t have an RMP – start working on it now! If you do have an RMP, Keeper now looking at how to monitor progress against improvement plans

The Glasgow context Former Strathclyde Regional Council ran Kerelaw School and Secure Unit – passed to GCC on local government reorganisation Many of the sorts of incidents investigated by Tom Shaw also happened at Kerelaw Kerelaw specifically mentioned in the Keeper’s report on records management GCC therefore committed at highest level to show that lessons have been learned and that we will not allow anything like this to happen again

Info Governance landscape RMP development coincided with a revamp of asset management within GCC A Corporate Asset Management Plan was developed covering seven key asset classes, including information Each asset class has an (operational level) asset board reporting to a (tactical) advisory board, all reporting to the Strategic Asset Management Planning Board Also have a separate Info Security Board

Legal and Regulatory Framework Legal and regulatory compliance Governance now embedded in language/ practices – with significant resources: Robust risk identification Transparency of process Clear accountability Managing accountability while ensuring security Can cause tensions and tie up resources Managing information done by us not to us This requires a suite of policies, guidance & training

Drafting the RMP Based very heavily on model RMP and the NRS’ own approved plan Large parts write themselves (assuming you have data protection, information security, business continuity etc. plans already) Having an in-flight EDRMS implementation helped Plan is an improvement model – we don’t have all the answers but we do have a journey to embark on Giving departments ownership has been key

FOI – life at the sharp end FOI sits at the sharp end of IM Establishing the existence and location of information, retrieving it, assessing it for sensitivity, redacting if necessary and producing a compliant explanation for what you’ve done within 20 working days is challenging. Increased push for proactive publication – next version of the model publication scheme will include open data Ongoing push to improve the profile of the poor relation, the Environmental Information (Scotland) Regs 2004 Top Tip on EIRs: if you think for a moment that something might be covered by the EIRs, there is about a 99% chance that it is

Historical Child Abuse Inquiry Suddenly old archives are big news Inquiry subject matter involves a lot of regional and pre-regional council archives social work and education files This is exactly the area Shaw found problems in locating material SRC archives – over 20 successor bodies, whose archive is it anyway?

Future developments: GDPR Data protection is a European concept designed to facilitate the free movement of personal data across the EU Perception that the current Directive is not implemented in a uniform fashion across the EU, and seriously out of date in a Web 2.0 universe Political agreement at end of 2015 on a new General Data Protection Regulation (GDPR) Comes into force May 2018 – unaffected by Brexit The GDPR still allows a lot of national discretion and at this point there are few UK Government indicators as to how the discretionary elements might pan out

ANY QUESTIONS?