Element (08): Information Security
The council operates an Information Security Management System (ISMS) in accordance with the international standard ISO27001.
The council's Information Governance Policy (PDF, 217 KB)(opens new window) and Information Security Guidance comply with this standard and provide a framework for all services.
All staff receive information security awareness training and are regularly reminded of the importance of security. Procedures and processes, such as, the Information Security Guidance are in place to deal with threats, risks and breaches of security.
Compliance with security requirements is assessed and reviewed as per the governance model described in Element 13.
More information on ISO27001 can be found on the British Standards Institute (opens new window) website.