Data Breach – lessons learned continued #2

The importance of up to date software supported by providers with system controls in place that include regular reviews of user agreements, instructions and policies. Only when processes and systems are challenged will risks and points of failure be identified and improvements implemented.  The correct classification of data/information is essential to ensure its protection and correct use.  Minimising separate departments and LEA organisations from operating with different processes and policies relating to the same or similar information is essential. Collaboration and sharing of good practice with national and international partners is needed.  Data maturity assessments should be conducted to continually improve existing services and build new capabilities including data governance and data ethics.  The quality of data and retention & disposal programmes need to be included in how an organisation assesses and uses identified high risk/value data sets. Employing competent personnel and retaining them in specialist roles is important, as well as, having effective training and learning for all personnel in data/information management. The three articles provide a brief and simple overview of the many issues raised and needing ongoing work. The NOTIONES project is part of the work to bring together specialists to identify and progress important aspects of the use of data, information and intelligence.

Author (s): Graham Kissock