Governance

GOV027

Understand what needs to be protected and why

You should know:

  • the sensitivity of contracts you let
  • the value of the information or assets that suppliers hold, access, or handle as part of their contracts with you
  • the impact on your organisation of loss or harm to information or assets that suppliers hold, access, or handle.

Think about the level of protection your suppliers need to provide for your assets and information as part of the contract, as well as the products or services they will deliver.

Remember that under the Public Records Act 2005, your organisation remains responsible for managing and protecting official records when they’re held offsite.

When you outsource an operation, you must meet the requirements for protecting information outlined in the:

 

Page last modified: 4/05/2022