Organisations need to have in place clear systems for the management, storage and disposal of personal or confidential information. In relation to disposal, it is important to be mindful of the Statute of Limitations. It is likely that the employer (managing agent) of a Guidance Service will have already developed policy on the disposal of records within their organisation. National Records, such as electronic databases, will normally follow the policy of the managing agency.
The Data Protection Act places an obligation on organisations to take appropriate measures to prevent ‘"unauthorised access to, or alteration, disclosure or destruction of the data and against their accidental loss or destruction".
The security of personal information is all-important. High standards of security are essential for all personal information and staff members need to be aware of the importance of security.
Self-help data security checklist
The Data Protection Commissioners ‘Guide for Data Controllers’ can be downloaded at: