Search our comprehensive database of publications.

More information on the types of information we publish and how to access it can be found on our freedom of information page.

Search results

56 results found


  1. Information security policy

    11 July 2016

    Our information security policy. Table of contents. Policy covering protection of information in all formats. ... The Departmental Security Officer, Senior Information Risk Owner, and Information Asset Owners, who constitute our Information Assurance

  2. Supplier Security policy

    30 December 2022

    The RoS Departmental Security Officer (DSO), Senior Information Risk Owner (SIRO), and Information Asset Owners (IAO’s), who constitute our Information Assurance Group (IAG), have strategic oversight and overall accountability for ... Review

  3. Physical security policy

    24 August 2016

    4. Roles and responsibilities. 4.1 RoS’s Information Security Assurance Group is responsible for the content of this policy, its approval and review. ... 5. Approval and review. 5.1 This policy will be reviewed and approved by the RoS Information

  4. Data protection policy

    9 March 2023

    8.3 RoS will operate appropriate procedures for managing any information security incident that constitutes a personal data breach, including notification to the ICO if required. ... 16. Review. 16.1 This policy will be reviewed and approved by the RoS

  5. Board minutes - November 2020

    24 March 2021

    Item 15, Annex 1A and Annex 2 – Key Risk Register and Assurance Framework. ... The board thanked the Head of IT Service and Security Architect for the informative overview.

  6. Records management policy

    30 December 2022

    UK General Data Protection Regulation andISO 27000 series, Information Security Management Systems (ISMS) standards. ... Cleared. Director of People. Approval. Information Assurance Group. Approval date. 25 Nov 2022.

  7. Personnel security vetting policy

    16 December 2014

    The purpose of this policy is to provide assurance as to the trustworthiness, integrity and reliability of RoS employees, contractors and temporary staff to ensure the security of our assets and ... IT Service Team will ensure security checks have been

  8. Call Recording Policy

    28 September 2021

    PCiDSS). Information security. RoS' interactive voice response (IVR) contains a pre-recorded message informing customers that calls will be recorded for training and monitoring purposes. ... dealt with by the Risk and Information Governance Team and

  9. Framework document - May 2023

    30 May 2023

    deal with freedom of information requests and data protection subject access requests; and. ... 39. RoS is bound by legislative provisions relating to confidentiality and the provision of information;.

  10. Board minutes - June 2021

    5 October 2021

    BIA Technical Architect Manager (DH) – items 8 - 10. Head of Risk and Information Governance (AR) – item 11. ... The Board noted the timeline of activity to complete an approval of the Key Risk Register and Assurance Framework 2021-26.