Information Security
The College is committed to keeping the information contained in its information systems secure and in accordance with legal and regulatory obligations.
The key aspect of information security is to ensure the confidentiality, integrity and availability of the information is maintained.
The College has policies and procedures in place to mitigate risks for both physical and electronic information.
This includes:
- Access controls to buildings and confidential areas
- Role based access controls to information systems and electronic files
- Anti-virus and anti-malware software
- Passwords and multi-factor authentication for all information systems
- Staff awareness training
- Data Protection Impact Assessments and 'Data Privacy by Design' for information-related projects
College members can find further information and guidance on the Intranet.