School ICT Policies Thread, Data Protection - Transfer data to others in School Administration; We transfer lots of data with lots of other companies/organistions.
I've yet to find a company that dosen't tell you ...
15th February 2010, 02:10 PM #1
- Rep Power
Data Protection - Transfer data to others
We transfer lots of data with lots of other companies/organistions.
I've yet to find a company that dosen't tell you that they fully comply with the data protection act and your data will be completely secure.
but what checks (due diligence) do you carry out prior to transfering data that all is secure and above board?
Often decisions have been made to transfer the data before it gets to me to do and when I ask questions about the organistations and their security I get vague answers and told to get on with it.
Does anyone have a "checklist" I could issue to senior/middle management to use when signing up to transfer data?
15th February 2010, 02:14 PM #2
You should have written and signed agreements from the receiving company about the steps they take to keep the data protected with if it is an outside organisation. For schools this would be, for example, to another LEA outside of your own, as you would fall under the umbrella of your LEAs data protection policy.
15th February 2010, 02:42 PM #3
- Rep Power
Originally Posted by Dos_Box
Will add a requirement to have written agreement on how the data will protected and used to the schools data protection policy.
Is it enough to just to accept these assurances?
17th March 2010, 01:33 AM #4
2 key things ... the written statement (or in the contract) should state that they will comply with all data protection laws and follow *your* data compliance (ie only make use of the data for the things that *you* state the data should be used for).
You may need to inform the data owners (ie tell parents and students) who will have access to the data outside of the schools (from the LA point of view, usually communicated via the Fair Processing notice) but you might have to just add it in an appendix to your published data protection policy.
By Ben_Stanton in forum How do you do....it?
Last Post: 4th September 2009, 03:10 PM
By 7andY in forum MIS Systems
Last Post: 24th April 2009, 03:02 PM
By Jobos in forum Windows
Last Post: 4th November 2008, 01:12 PM
By plexer in forum How do you do....it?
Last Post: 21st August 2008, 08:56 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Tags for this Thread