FOI Request

Dear Mr Schneider,

Thank you for your email.

This has now been logged with an FOI officer.

Case reference: 1277649

Kind regards

Somerset Direct
The Deane House
Belvedere Road
TA1 1HE

Tel: 0845 345 9166
Email: [email address]
SMS Text: 07781 482858
Web: www.somerset.gov.uk

Southwest One - working in partnership with Somerset County Council,
Taunton Deane Borough Council & Avon and Somerset Police.
South West One Limited - Registered in England and Wales with number
6373780 Registered office:PO Box 41, North Harbour, Portsmouth, Hants
PO6 3AU

show quoted sections

Dear Mr Schneider

Thank you for your recent request under the Freedom of Information Act
2000. Your request has been assigned reference number 685 and we will
endeavour to respond within 20 working days as allowed under the Act.

Kind regards

Rob Forse

Graduate Trainee

Business Support Officer - Resources Directorate

Somerset County Council

County Hall, Taunton

Somerset, TA1 4DY

01823 357734

[1][email address]

This communication is intended solely for the person (s) or organisation
to whom it is addressed. It may
contain privileged and confidential information and if you are not the
intended recipient (s), you must not
copy, distribute or take any action in reliance on it. If you have
received this e-mail in error please notify
the sender and copy the message to [email address]

Individuals are advised that by replying to, or sending an e-mail message
to Somerset County Council, you
accept that you have no explicit or implicit expectation of privacy.

In line with the Surveillance and Monitoring Policy, any e-mail messages
(and attachments) transmitted over
the Council***s network may be subject to scrutiny.

References

Visible links
1. mailto:[email address]

Dear Mr. Schneider,

Thank you for your recent Freedom of Information request concerning
contact details, finance information and government networks. I can
confirm that this Council does hold the information you are seeking.

The answers to your questions are as follows:

Provide name, address and telephone number for the following:

o Senior Information Risk Owner Roger
Kershaw
o Governance Manager Peter Grogan
o Information Security Officer/Manager Jon Bazley (Title:
Information Sharing & Compliance Officer)
o Information Technology Security Officer/Manager (This is
delegated to our partner company, Southwest One)
o Caldecott Guardian - CYPD Linda Barnett

- ASC Trevor Gillam

The preferred method for contacting council officers is by using Somerset
Direct:

General Enquiries 0845 345
9166

Community Services for Adults 0845 345 9133

Children & Young People's Services " " 9122

Roads & Transport "
" 9155

Environment & Community Protection " " 9188

Library Service "
9177

Adult Learning, Leisure, Culture & Heritage " " 9144

Fostering & Adoption "
" 9900

Does your organisation process electronic payment cards?

Yes, we do take payment in this way.

How much money is processed from electronic payment cards per annum?

We do not track these transactions in terms of value or quantity.

How many electronic payment card transactions are processed per annum?

As above.

Are you PCI-DSS compliant?

Yes

Are you, or have you considered becoming ISO 27001 compliant or certified?

No

Are you connected and operationally utilising the Government Connect
network?

Yes

Do you meet the Government Connect version three requirements?

Yes, Audit passed September 2009

Please supply your latest CLAS consultant annual Government Connect
assessment/audit report, blanking out any statements which could
contravene a security concern from a third party reading it.

We are not able to supply this information under Section 23 Security
Matters - GCSx network - marked RESTRICTED

Do you meet the Government Connect version four requirements?

Currently under-going audit - results due in September.

Please supply the latest internal report for the Government Connect
version four Audit/Assessment, blanking out any statements which could
contravene a security concern from a third party reading it.

This is also a restricted document under Section 23 Security Matters -
GCSx network - marked RESTRICTED

Are you connected to and operationally utilising the Criminal Justice
Network?

Yes

Please supply your latest annual assessment/audit report, blanking out any
statements which could contravene a security concern from a third party
reading it.

SCC has not been required by CJSM to meet an audit / assessment to qualify
for this connection.

Are you connected to and operationally utilising the NHS N3 Network? If
not have you considered connecting to the NHS N3 network and why was the
decision made not to connect?

No, not part of NHS N3 as we are a local authority. We are considering
this as part of the Government Connect Programme this year.

Please supply your latest N3 Connection assessment/audit report, blanking
out any statements which could contravene a security concern from a third
party reading it.

N/a.

Do both schools and the Council share the same physical network
responsible for voice and data communications?

Data - Both Schools & the Council share the same physical network
infrastructure, but there is a logical separation which provides security.
This separation allows access to specific applications only. Many of the
schools applications are hosted internally by the local authority, so the
physical network infrastructure is provided by the Council. Internet
access for the Schools is provided externally by the South West Grid for
Learning Network.

Phones - The phone systems are all separated from the SCC WAN. Secondary
schools have their own PBXs and the primaries have private lines.

If you are dissatisfied with the handling of your request, you have the
right to ask for an internal review. Internal review requests should be
submitted within two months of the date of receipt of the response to your
original request and should be addressed to the Information Governance
Manager, Peter Grogan; [1][email address]

Please remember to quote the reference number 685 in any future
communications.

If you are not content with the outcome of the internal review, you have
the right to apply directly to the Information Commissioner for a
decision. The Information Commissioner can be contacted at: Information
Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9
5AF.

Yours sincerely,

Sue Paddick

Senior Adviser - Community Governance & Resources

Business Development, Resources - Room A313

Somerset County Council, Taunton, TA1 4DY

Tel: 01823 356780

[2][email address]

[3]www.somerset.gov.uk

This communication is intended solely for the person (s) or organisation
to whom it is addressed. It may
contain privileged and confidential information and if you are not the
intended recipient (s), you must not
copy, distribute or take any action in reliance on it. If you have
received this e-mail in error please notify
the sender and copy the message to [email address]

Individuals are advised that by replying to, or sending an e-mail message
to Somerset County Council, you
accept that you have no explicit or implicit expectation of privacy.

In line with the Surveillance and Monitoring Policy, any e-mail messages
(and attachments) transmitted over
the Council***s network may be subject to scrutiny.

References

Visible links
1. blocked::mailto:[email address]
mailto:[email address]
2. mailto:[email address]
3. http://www.somerset.gov.uk/