FOI Request

FAO David Schneider
What Do They Know

Dear Sir

In response to your request under the provisions of the Freedom of
Information Act 2000

1) Contact details for Senior Information Risk Owner (SIRO), Governance
Manager, Information Security Officer/Manager, Information Technology
Security Officer/Manager, Caldecott Guardan

The SIRO is Jim Burness, Director of Resources contact details of whom are
already in the public domain on the South Bucks District
Council Website

[1]http://www.southbucks.gov.uk/council_dem...

There is no Governance Manager, Information Security Officer/Manager,
Information Technology Security Officer/Manager, or Caldecott Guardian as
such . This is a small local government public authority. Matters
pertaining to Governance would be dealt with by the Monitoring Officer,
Lynne Reardon, [2][email address]. All IT matters are
dealt with by the IT Manager, Linda Grange,
[3][email address].

2) PCI-DSS

Does your organisation process electronic payment cards?

How much money is processed from electronic payment cards per

annum?

How many electronic payment card transactions are processed per

annum?

Are you PCI-DSS compliant?

The Council uses payment cards

The value of transactions in 2009/10 was £35,451

The number of transactions in 2009/10 was 373

The Council is PCI - DSS compliant.

3) ISO 27001

Are you or have you considered becoming ISO 27001 compliant or

certified?

The Council has not considered becoming ISO 27001 compliant or certified

4) GOVERNMENT CONNECT

Are you connected and operationally utilising the Government

Connect network? If not have you considered connecting to

Government Connect and why was the decision made not to connect?

Do you meet the Government Connect version three requirements?

Please supply your latest CLAS consultant annual Government Connect

assessment/audit report, blanking out any statements which could

contravene a security concern from a third party reading it.

Do you meet the Government Connect version four requirements?

Please supply the latest internal report for the Government Connect

version four Audit/Assessment, blanking out any statements which

could contravene a security concern from a third party reading it.

The Council is connected to the Government Connect network. The Council
has been assessed and accredited to v4.1. Having considered your further
requests for access to information concerning reports with reference to
our accreditation/assessment/audit in respect of Government Connect I can
confirm that South Bucks District Council holds the information
you requested. However I should like to inform you this information is
being withheld under the exemption 31(1)(a) where information which is not
exempt information by virtue of section 30 (Investigations and proceedings
conducted by public authorities) is exempt information if its disclosure
under this Act would, or would likely to, prejudice - (a) the prevention
or detection of crime. It is critical that the public has confidence in
the Government Connect restricted network and that such information is
treated with appropriate confidentiality and kept safe from any risk of
misuse because the request relates to the design, structure and security
of the Council's systems and interfaces.

The Council considers that any disclosure related to the security of such
systems outweighs the public interest in disclosing this information and
is therefore exempt from disclosure under the Freedom of Information Act
2000 (FOIA) and may be exempt under other UK information legislation.
Refer any FOIA queries to GCHQ on 01242 221491 ext: 30306 or email
[4][email address].

5) CRIMINAL JUSTICE NETWORK

Are you connected to and operationally utilising the Criminal

Justice Network? If not have you considered connecting to the

Criminal Justice Network and why was the decision made not to

connect?

The Council is not connected to the above network nor has it considered
connecting to the Criminal Justice Network.

5) N3 CONNECTION

Are you connected to and operationally utilising the NHS N3

Network? If not have you considered connecting to the NHS N3

network and why was the decision made not to connect?

Not applicable

6) SCHOOLS NETWORKS

Do both schools and the Council share the same physical network

responsible for voice and data communications?

Not applicable - South Bucks District Council does not hold this
information as this is a County Council function and South Bucks is a
District Council. You need to re-direct your request to Bucks County
Council. You may access their website at [5]www.buckscc.gov.uk .

I hope this answers your questions but if you feel that it does not, you
can contact me with your queries. You also have the right to request an
internal review of your request and ultimately to complain to the
Information Commissioner should you still be unhappy with the outcome.
You should direct any queries or complaints to me before progressing any
complaint to the Information Commissioner. If you would like more
information about the role and work of the Information Commissioner go to
their website [6]www.ico.gov.uk.

Yours faithfully

Zoë Bloomfield
Corporate Information Officer
Legal Services
South Bucks District Council
Capswood
Oxford Road
Denham
Bucks UB9 4LH

Save resources and reduce waste - do you really need to print this email?
Visit our website: [7]http://www.southbucks.gov.uk
***** South Bucks District Council E-mail Disclaimer*****
You should be aware that all e-mails received and sent by this Council may be
subject to recording and/or monitoring to meet relevant legislative
requirements. They are subject to the Freedom of Information Act 2000 and
therefore may be disclosed to a third party. This email and any files
transmitted with it are confidential and intended solely for the use of the
individual or entity to whom they are addressed. If you are not the intended
recipient, the use of the information by disclosure, copying or distribution is
prohibited and may be unlawful. If you have received this email in error please
notify the system administrator at [8][email address] . This
footnote also confirms that this email message has been swept for the presence
of computer viruses.
*****End of Disclaimer*****

References

Visible links
1. http://www.southbucks.gov.uk/council_dem...
2. mailto:[email address]
3. mailto:[email address]
4. mailto:[email address]
5. http://www.buckscc.gov.uk/
6. http://www.ico.gov.uk/
7. http://www.southbucks.gov.uk/
8. mailto:[email address]