Talk:Data Breach Policy/Proposed revisions June 2014
Rationale for changes
We now have a standard form for reporting breaches which makes a lot of the old working unnecessary (you can view the current copy here
I've also re-emphasised the requirement to notify within 24 hours and noted that this now applies to all breaches, however trivial. If in doubt staff should contact the ICO to confirm if something less serious constitutes a breach and tend to err on the side of caution and notify.
Guide for volunteers
Given that volunteers can be in possession of WMUK property (e.g. laptops) there should probably be a guide available to them for what to do in the event that this property is stolen while they have responsibility for it. The equipment is not likely to have personal information on it, but this is not impossible (e.g. if a laptop had been used to record details of participants at an editathon). Thryduulf (talk: local | en.wp | en.wikt) 23:21, 14 May 2014 (BST)
- I'll mention to Katie :) Katherine Bavage (WMUK) (talk) 10:00, 15 May 2014 (BST)