The checklist will give you an insight about where your organisation is with data protection from a data privacy and technical security perspective. The checklists form part of the Best Practice library which includes contextualised guidance, documents and resources on specific areas of data processing. The checklists form part of the ICO Accountability Framework which helps organisations with their governance and corporate risk management where it relates to data protection. The checklists cover all aspects of the framework, enabling you to assess against organisation baselines:
- Leadership & Oversight
- Risk Management (DPIA's)
- Policies & Procedures
- Individual Rights
- Contracts & Data Sharing
- Transparency
- Training & Awareness
- Records Management
- Monitoring Verification & Reporting (Data Breaches, SARs and FOI's)
- Response & Enforcement (SARs and FOI's)
Biometrics
Biometric data is personal data resulting from specific processing relating to the physical, physiological or behavioural characteristics of a natural person, that allow or confirm the unique identification of that natural person, such as facial images. If you are considering implementing a system that includes biometrics, then the Biometric checklist will help you understand what needs to be taken into consideration for the project. It links to the Biometric Data Best Practice Area which gives guidance that refers to the protection of biometric information of children in schools and colleges published by the DfE. there is a template policy and consent form.Answer a sample Biometrics checklist question:
DPE customers can get started on completing the Biometric checklist here: