The checklist will give you an insight about where your organisation is with data protection from a data privacy and technical security perspective. The checklists form part of the Best Practice library which includes contextualised guidance, documents and resources on specific areas of data processing. The checklists form part of the ICO Accountability Framework which helps organisations with their governance and corporate risk management where it relates to data protection. The checklists cover all aspects of the framework, enabling you to assess against organisation baselines:
- Leadership & Oversight
- Risk Management (DPIA's)
- Policies & Procedures
- Individual Rights
- Contracts & Data Sharing
- Transparency
- Training & Awareness
- Records Management
- Monitoring Verification & Reporting (Data Breaches, SARs and FOI's)
- Response & Enforcement (SARs and FOI's)
CCTV
The CCTV Checklist covers Policies and Procedures and Operational practicalities. It links in with the CCTV Best Practice Area which provides guidance and support if you have CCTV monitoring your organisation/sites. It covers:- The purpose of the CCTV
- Location of cameras
- Notices (templates)
- Retention
- CCTV equipment
- Accessing footage and personal data
- Misuse
- DPIAs
You might also want to consider going through the checklist if you are updating your CCTV system from an onsite system to a cloud-based one, where a third party supplier will be storing the footage on your behalf.
Answer a sample CCTV checklist question:
DPE customers can get started on completing the CCTV checklist here: