The ICO has published a short guide for small businesses on IT security.
The guide is ideal for small organisations that are trying to get to grips with their obligations under the Data Protection Act, and are yet to develop an IT security policy (or wish to review their current policy). Helpfully, whilst the guide doesn’t provide a template policy, it does provide organisations with a checklist of issues to consider and some practical recommendations.
In particular, the guide provides more detailed advice in relation to problem issues such as securing data on the move, being alert to potential IT security issues, awareness within an organisation, minimising data collection and processing, and the use of third party IT contractors.
On June 19, 2012