JCAD core system downtime
The JCAD core risk management system will be unavailable between 5pm on Friday 22 November and midnight on Thursday 28 November whilst a system upgrade takes place.
The Information Governance team can help you manage some of these risks by evaluating your data processing activity.
Delivering services effectively often requires us to process personal and organisational information. A breach of this information could cause damage or distress to individuals or pose a reputational and financial risk to the council. The Information Governance team can help you minimise these risks.
Under data protection legislation everyone must complete a Data Privacy Impact Assessment (DPIA) where data processing is considered to be high risk data processing. We use the Information Governance Activity Evaluation (IGAE) to work out when a DPIA is necessary or if a simpler risk assessment would be a better approach.
Both assessments will cover information security, data quality and privacy very carefully, however a DPIA will be more detailed due to the higher risk toward data processing.
Unless you are buying consumables, most activities such as procuring services will involve some form of personal or business information that requires protection and it is likely that the Information Governance Team need to evaluate your data processing activity.
To start this process, you must complete an IGAE by:
The Information Governance team will review your request, determine which assessment route is required and provide you with the relevant support.
You can make a request for advice from Information Governance on the Assyst portal. Even if you are not sure if you do need help, you can use this form to find out.
You can use the Data protection compliance questionnaire (DOCX, 27KB) for any procurement or purchasing activities that involved processing personal information.
You can read guidance on how to complete the data protection compliance questionnaire (DOCX, 215KB).