Policy overview
Aim
The aim of this policy is to ensure that we define a minimum set of security controls when:
- third parties process personal data on our behalf
- we share personal data with third parties, often as part of an information sharing agreement
- we share other data which if compromised would have a negative impact on:
- service delivery
- reputation
- finance
- people
Introduction
We regularly share information with third parties to maximise public service delivery. It is important that this information is protected to:
- help reduce information risk
- assist us in meeting our legal obligations