Document Reference: IM 06 Data Protection Policy
Employee training & Acceptance of responsibilities
All employees who have access to any kind of personal data will have their responsibilities outlined during their induction procedures. Opportunities to raise Data Protection issues are available through employee E learning, employee departmental meetings, Senior Management meetings, internal audits. Acceptance of the employees’ responsibilities to Data Protection will be gained through their induction, and an annual review of the policy, which will be read through the E Learning process, which is recorded and added to the employee training file. The policy will be reviewed at least annually by the Data Protection Officer who is also the internal ISO auditor. The internal audit of the policy will be carried out by open surveillance of the procedures by the auditor, noting all observations and actions which will be reported to Senior Management and actioned where appropriate. The policy review will be carried out in accordance with our Internal ISO audits.
Induction
Continuing training
Procedure for staff signifying acceptance of policy
Policy review
Responsibility
Procedure
Timing
Cox Management Services Ltd ISO 9001 / ISO 14001 / ISO 45001
Rev 6 01/11/2024 PAS99: 2012 Issue 1
Approved: AK
9
Made with FlippingBook Digital Publishing Software