All of our customers have access to the DPE Knowledge Bank which has a Best Practice Checklist area.  Each checklist is designed to help you walk through all aspects of data protection.
The checklist will give you an insight about where your organisation is with data protection from a data privacy and technical security perspective. The checklists form part of the Best Practice library which includes contextualised guidance, documents and resources on specific areas of data processing.  The checklists form part of the ICO Accountability Framework which helps organisations with their governance and corporate risk management where it relates to data protection.    The checklists cover all aspects of the framework, enabling you to assess against organisation baselines:

1. Leadership & Oversight
2. Risk Management (DPIA's)
3. Policies & Procedures
4. Individual Rights
5. Contracts & Data Sharing
6. Transparency
7. Training & Awareness
8. Records Management
9. Monitoring Verification & Reporting (Data Breaches, SARs and FOI's)
10. Response & Enforcement (SARs and FOI's)

Passwords

This article highlights the Passwords checklist.

The checklist focuses of three main areas relating to password security:

• People (access rights, training and awareness)
• Process (security incidents, role of IT)
• Technology (setup and configuration checks)

This links into the Passwords Best Practice Area which has further help and advice about a password policy, posters to raise awareness about password security, learning nuggets, and news related articles.

Answer a sample Password checklist question:

---

DPE customers can get started on completing the Password checklist here: