Pupil data: security and costs

Currently waiting for a response from Department for Education, they must respond promptly and normally no later than (details).

Dear Department for Education,
please provide information regarding data recipient security and their use of identifying pupil data by any third-party mentioned in the register: [ref: https://www.gov.uk/government/publicatio... regards Tier 1-4 data [page 19 https://www.gov.uk/government/uploads/sy...

a) the DfE third-party template information security questionnaire
b) the total number in each year of site visits in which any audit was carried out by, or at the request of the DfE since 2011
c) all findings from those site visits in any format
d) the information should include date carried out, location, the affiliation of the site visitor (ie DfE, or a contracted organisation)
e) copies of security and Privacy Impact Assessments carried out of any DfE cloud data management tools for pupil, student, and workforce data processed by the DfE
f) total extraction costs for third-party register requests since 2011, in each year

Thank you for your consideration.
Sincerely,

Jen Persson

ACCOUNT, Unmonitored, Department for Education

Thank you for contacting the Department for Education. We can confirm that
we have received the Freedom of Information request you submitted.

We will respond to you within 20 working days.

 

ACCOUNT, Unmonitored, Department for Education

 

 

Dear Jen Persson

 

Thank you for your recent enquiry. A reply will be sent to you as soon as
possible. For information; the departmental standard for correspondence
received is that responses should be sent within 20 working days as you
are requesting information under the Freedom of Information Act 2000. Your
correspondence has been allocated reference number 2017-0052699

 

Thank you

 

Department for Education

Ministerial and Public Communications Division

Tel: 0370 000 2288

 

Dear Department for Education,

please provide information regarding data recipient security and their use
of identifying pupil data by any third-party mentioned in the register: 
[ref:
[1]https://www.gov.uk/government/publicatio...
regards Tier 1-4 data [page 19
[2]https://www.gov.uk/government/uploads/sy...

 

a) the DfE third-party template information security questionnaire

b) the total number in each year of site visits in which any audit was
carried out by, or at the request of the DfE since 2011

c) all findings from those site visits in any format

d) the information should include date carried out, location, the
affiliation of the site visitor (ie DfE, or a contracted organisation)

e) copies of security and Privacy Impact Assessments carried out of any
DfE cloud data management tools for pupil, student, and workforce data
processed by the DfE

f) total extraction costs for third-party register requests since 2011, in
each year

 

Thank you for your consideration.

Sincerely,

 

Jen Persson

 

 

References

Visible links
1. https://www.gov.uk/government/publicatio...
2. https://www.gov.uk/government/uploads/sy...

Looking for an EU Authority?

You can request documents directly from EU Institutions at our sister site AskTheEU.org . Find out more .

AskTheEU.org