Cyber security and GDPR

The request was successful.

Dear Sheffield Hallam University,

Under the Freedom of Information Act 2000, can you please answer the following questions.

1) Do you have a co-ordinated plan for GDPR readiness – and can I have a copy of it?

2) Do you have Cyber Essentials accreditation, if so, is it Uni-wide or specific areas, if not, do you have plans to get it?

3) Do you have an Information Governance Board or similar function?

4) Have you, or do you plan to, implement HTTP Strict Transport Security (HSTS) to secure your websites?

Yours faithfully,

Rachel Jackson

! Freedom of Information Mailbox, Sheffield Hallam University

1 Attachment

Reference: FOI/17/246

 

Dear Ms. Jackson

 

I am writing to acknowledge receipt of your Freedom of Information request
on 23/11/17. We will respond to your request in due course and within the
20 working days stipulated by the Freedom of Information Act.

 

Should you need to contact us regarding this request, please use our
reference: FOI/17/246

 

Kind regards,

 

David Goldberg

Information Governance Assistant

 

[1]image001

 

Secretary and Registrar's Directorate

Sheffield Hallam University

Howard Street

Sheffield S1 1WB

 

Telephone +44 (0)114 225 5555

Direct line +44 (0)114 225 2785

 

[2]www.shu.ac.uk

 

 

show quoted sections

! Freedom of Information Mailbox, Sheffield Hallam University

3 Attachments

 

Reference: FOI/17/246

 

Dear Ms. Jackson

 

I am writing in response to your Freedom of Information request regarding
Cyber security and GDPR at Sheffield Hallam University. Please see the
information below in response to your request.

 

1)      Do you have a co-ordinated plan for GDPR readiness – and can I
have a copy of it?

 

Please see attached the original plan which went to the first meeting of
our GDPR Implementation Group.  This is currently being updated.

 

2) Do you have Cyber Essentials accreditation, if so, is it Uni-wide or
specific areas, if not, do you have plans to get it?

               

The University currently holds Cyber Essentials certification for a number
of specific areas and is in the process of attaining University-wide
accreditation.

 

2)      Do you have an Information Governance Board or similar function?

 

The University does not have an Information Governance Board.  We
currently have a GDPR Implementation Group.

 

4) Have you, or do you plan to, implement HTTP Strict Transport Security
(HSTS) to secure your websites?

               

We do plan to implement HTTP Strict Transport Security (HSTS) to secure
our websites.

 

This concludes the University’s response to your request. Should you be
dissatisfied with how the University has handled your request, please
consult the attached complaints procedure.

 

Regards,

David Goldberg

Information Governance Assistant

 

[1]image001

 

Secretary and Registrar's Directorate

Sheffield Hallam University

Howard Street

Sheffield S1 1WB

 

Telephone +44 (0)114 225 5555

Direct line +44 (0)114 225 2785

 

[2]www.shu.ac.uk

 

 

show quoted sections