Element (08): Information Security

The council operates an Information Security Management System (ISMS) in accordance with the international standard ISO27001.

The council's Icon for pdf Information Governance Policy [345.51KB] and Information Security Guidance comply with this standard and provides a framework for all services.

All staff receive information security awareness training and are reminded of the importance of security. Procedures and processes such as the Information Security Guidance are in place to deal with threats, risks and breaches of security.

Compliance with security requirements is assessed and reviewed as per the governance model described in Element 13.

More information on ISO27001 can be found on the British Standards Institute website.