Data Protection Compliance

Maddy Snow made this Freedom of Information request to The National Army Museum Automatic anti-spam measures are in place for this older request. Please let us know if a further response is expected or if you are having trouble responding.

The National Army Museum did not have the information requested.

Dear The National Army Museum,

1. Does your organisation use any applications or software to record Record of Processing Activity (ROPA)?

If so, please state the product name(s) and version numbers(s) (if known)

2. Does your organisation use any applications or software to support preparation for, or maintenance of ISO 27001 and/or ISO 27701 compliance?

If so, please state the product name(s) and version numbers(s) (if known)

3. Does your organisation use any applications or software associated with data breach management?

4. Does your organisation use any applications or software associated with Freedom of Information management?

If so, please state the product name(s) and version numbers(s) (if known)

5. Does your organisation use any applications or software for Policy Management?

If so, please state the product name(s) and version numbers(s) (if known)

6. Does your organisation use any eLearning for Data Protection and Security Awareness?

If so, please state the product name(s) and version numbers(s) (if known)

7. Has your organisation reviewed / explored the market regarding the provision of technology which supports the delivery of Information Governance functions?

If yes - please specify what actions have been taken?

If no - does your organisation have any plans to review / explore this market in the next 3 years?

8. Has your organisation allocated budget / financial resources regarding the commissioning / procurement of technology which supports the delivery of Information Governance functions?

If yes - please specify what actions have been taken?

If no - does your organisation have any plans to allocate budget / financial resources in the next 3 years?

9. Has your organisation developed a business case (outline or otherwise) regarding the commissioning / procurement of technology which supports the delivery of Information Governance functions?

If yes - please specify what actions have been taken?

If no - does your organisation have any plans to develop a business case in the next 3 years?

10. Will there be any opportunities to engage with your organisation regarding the commissioning / procurement of technology which supports the delivery of Information Governance function in the next three years?

Yours faithfully,

Maddy Snow

Penny Hutchins, The National Army Museum

Dear Ms Snow

Thank you for your request of 14 September 2023 made under the Freedom of
Information Act (2000) requesting information about data protection
compliance at the National Army Museum.

I can confirm a nil response to all your questions except for number 6,
the answer to which is Workrite.

Please note the information below about your personal information.

Your privacy: we use your personal information such as name and address so
that we can comply with our legal obligations to respond to FOI requests.
For further details about the use of information about you, please see the
information request handling privacy notice on our website at
https://www.nam.ac.uk/privacy-and-cookies

Yours sincerely

Penny Hutchins
Head of Archives, Library and Information
National Army Museum
Royal Hospital Road
Chelsea
London
SW3 4HT
[email address]
020 7881 2442

ref:_00Db0JEWg._5003z2kxZ3O:ref