Information Governance

Information is a vital asset of the University. The ability to generate, structure, process, access, transfer, disseminate, archive and destroy information is central to the mission of the University in its teaching, learning and research and the services provided to students, staff and a range of external partners.

Information Governance describes the accountability framework in place in the creation, storage, use, archival and deletion of the University’s information. It includes the processes, roles, standards and metrics that ensure the effective and efficient use of information in enabling the University to achieve its goals.

Information governance is about ensuring that:  

• clear roles and responsibilities for information management and security are in place, supported by robust policies and procedures. This includes a framework to protect University information against unauthorised access, compromise of assets and interruption to our activities
• our information rights procedures, including Data Protection and Freedom of Information comply with the law, including the forthcoming General Data Protection Regulations which will apply from 25 May 2018
• information risks are assessed appropriately
• appropriate information security training is available for all staff
• robust arrangements for, and learning from, information related incidents such as data breaches or losses
• adequate and appropriate records are maintained, and the sharing of information is carried out in an appropriate way

Information Governance, however, is a joint activity and delivery involves key colleagues including the IT Services Director, IT Security Manager and Records and Information Manager.