Data Protection Compliance

Response to this request is long overdue. By law, under all circumstances, Criminal Procedure Rule Committee should have responded by now (details). You can complain by requesting an internal review.

Dear Criminal Procedure Rule Committee,

1. Does your organisation use any applications or software to record Record of Processing Activity (ROPA)?

If so, please state the product name(s) and version numbers(s) (if known)

2. Does your organisation use any applications or software to support preparation for, or maintenance of ISO 27001 and/or ISO 27701 compliance?

If so, please state the product name(s) and version numbers(s) (if known)

3. Does your organisation use any applications or software associated with data breach management?

4. Does your organisation use any applications or software associated with Freedom of Information management?

If so, please state the product name(s) and version numbers(s) (if known)

5. Does your organisation use any applications or software for Policy Management?

If so, please state the product name(s) and version numbers(s) (if known)

6. Does your organisation use any eLearning for Data Protection and Security Awareness?

If so, please state the product name(s) and version numbers(s) (if known)

7. Has your organisation reviewed / explored the market regarding the provision of technology which supports the delivery of Information Governance functions?

If yes - please specify what actions have been taken?

If no - does your organisation have any plans to review / explore this market in the next 3 years?

8. Has your organisation allocated budget / financial resources regarding the commissioning / procurement of technology which supports the delivery of Information Governance functions?

If yes - please specify what actions have been taken?

If no - does your organisation have any plans to allocate budget / financial resources in the next 3 years?

9. Has your organisation developed a business case (outline or otherwise) regarding the commissioning / procurement of technology which supports the delivery of Information Governance functions?

If yes - please specify what actions have been taken?

If no - does your organisation have any plans to develop a business case in the next 3 years?

10. Will there be any opportunities to engage with your organisation regarding the commissioning / procurement of technology which supports the delivery of Information Governance function in the next three years?

Yours faithfully,

Connor Dash