Document ID Document Name Document Classification Version Date GP_GDP_COM01 Data Protection Policy Internal V Apr-18
|
|
- Abigayle Berry
- 5 years ago
- Views:
Transcription
1 Dcument ID Dcument Name Dcument Classificatin Versin Date GP_GDP_COM01 Data Prtectin Plicy Internal V Apr-18 Revisin Histry [SEPG] Srl. Versin Authr/Owner Date f Descriptin f Apprved By N. N. Release Release/Change Anand Kapr 26-Apr-2018 Initial Release EVP This is a cntrlled dcument. Unauthrized access, cpying, and replicatin are prhibited. This dcument must nt be cpied in whle r in parts by any means withut the written authrizatin f the Staffing Slutin Head, Pyramid IT Cnsulting, India. 2018, Pyramid IT Cnsulting. All rights reserved. Table f Cntents Table f Cntents GDPR Backgrund Definitins Plicy Statement Rles and Respnsibilities under GDPR Data prtectin principles Data Subject Rights Cnsent Management Security f Data Disclsure f Data Retentin and Dispsal f Data Data Transfer Persnnel Data Inventry Versin Apr-2018 Uncntrlled When Printed Page 1
2 1. GDPR Backgrund The General Data Prtectin Regulatin 2016 replaces the EU Data Prtectin Directive f 1995 and supersedes the laws f individual Member States that were develped in cmpliance with the Data Prtectin Directive 95/46/EC. Its purpse is t prtect the rights and freedms f living individuals and t ensure that persnal data is prcessed with their cnsent and nt prcessed withut their knwledge. 2. Definitins Persnal data any infrmatin relating t an identified r identifiable natural persn ('data subject'); an identifiable natural persn is ne wh can be identified, directly r indirectly, in particular by reference t an identifier such as a name, an identificatin number, lcatin data, an nline identifier r t ne r mre factrs specific t the physical, physilgical, genetic, mental, ecnmic, cultural r scial identity f that natural persn. Special categries f persnal data persnal data revealing racial r ethnic rigin, plitical pinins, religius r philsphical beliefs, r trade-unin membership, and the prcessing f genetic data, bimetric data fr the purpse f uniquely identifying a natural persn, data cncerning health r data cncerning a natural persn's sex life r sexual rientatin. Data cntrller the natural r legal persn, public authrity, agency r ther bdy which, alne r jintly with thers, determines the purpses and means f the prcessing f persnal data; where the purpses and means f such prcessing are determined by Unin r Member State law, the cntrller r the specific criteria fr its nminatin may be prvided fr by Unin r Member State law. Data subject any living individual wh is the subject f persnal data held by an rganizatin. Prcessing any peratin r set f peratins which is perfrmed n persnal data r n sets f persnal data, whether r nt by autmated means, such as cllectin, recrding, rganizatin, structuring, strage, adaptatin r alteratin, retrieval, cnsultatin, use, disclsure by transmissin, disseminatin r therwise making available, alignment r cmbinatin, restrictin, erasure r destructin. Prfiling is any frm f autmated prcessing f persnal data intended t evaluate certain persnal aspects relating t a natural persn, r t analyze r predict that persn s perfrmance at wrk, ecnmic situatin, lcatin, health, persnal preferences, reliability, r behavir. This definitin is linked t the right f the data subject t bject t prfiling and a right t be infrmed abut the existence f prfiling, f measures based n prfiling and the envisaged effects f prfiling n the individual. Persnal data breach a breach f security leading t the accidental, r unlawful, destructin, lss, alteratin, unauthrized disclsure f, r access t, persnal data transmitted, stred r therwise prcessed. There is an bligatin n the cntrller t reprt persnal data breaches t the supervisry authrity and where the breach is likely t adversely affect the persnal data r privacy f the data subject. Data subject cnsent - means any freely given, specific, infrmed and unambiguus indicatin f the data subject's wishes by which he r she, by a statement r by a clear affirmative actin, signifies agreement t the prcessing f persnal data. Child the GDPR defines a child as anyne under the age f 16 years ld, althugh this may be lwered t 13 by Member State law. The prcessing f persnal data f a child is nly lawful if parental r custdian cnsent has been btained. The cntrller shall make reasnable effrts t verify in such cases that cnsent is given r authrized by the hlder f parental respnsibility ver the child. Versin Apr-2018 Uncntrlled When Printed Page 2
3 Third party a natural r legal persn, public authrity, agency r bdy ther than the data subject, cntrller, prcessr and persns wh, under the direct authrity f the cntrller r prcessr, are authrized t prcess persnal data. Filing system any structured set f persnal data which are accessible accrding t specific criteria, whether centralized, decentralized r dispersed n a functinal r gegraphical basis. 3. Plicy Statement Pyramid is cmmitted t dcument its business activities with recrds that are cmplete, authentic, reliable, secure and accessible and cmply with data prtectin requirements f EU GDPR thrughut their lifecycle, frm planning and creatin t ultimate dispsal. It als ensures t cmply with all data prtectin principles. In view f the plicy, the tp management f Pyramid is cmmitted and will ensure the fllwing: The persnal infrmatin btained will be prcessed fairly, supprted by a legal basis and used in a transparent manner, respecting the data subjects rights and will nt be prcessed unless the prcessing is necessary fr the purpses defined under the EU General Data Prtectin Regulatin. The infrmatin btained will be: Adequate, relevant and nt excessive fr the purpses. Accurate and kept up t date. Kept fr n lnger than is necessary fr the purpse and dispsed timely and apprpriately. Prcessed in accrdance with the data subject s rights. Kept secure frm unauthrized access, accidental lss r destructin. Transferred t a cuntry utside the Eurpean Ecnmic Area (EEA) under circumstances where the persnal infrmatin can be adequately prtected. The persnal infrmatin under its cntrl is managed in cmpliance with the EU General Data Prtectin Regulatin. Prcedures are in place t enable the rights f individuals t be respected. Establish a gvernance framewrk t implement, and mnitr this plicy. Prvide clear guidance fr emplyees and external agencies, wrking n behalf f Pyramid t help them t use and share persnal infrmatin securely and in full cmpliance with EU General Data Prtectin Regulatin. Ensure that disclsures t third parties are managed in cmpliance with EU General Data Prtectin Regulatin. Ensure that persnal infrmatin prcessed by third parties n behalf f Pyramid is managed in cmpliance with EU General Data Prtectin Regulatin. Ensure that the level f security impsed t ensure cmpliance and prtect individual rights will nt prevent access t infrmatin where this is a legal r reprting requirement. Ensure the awareness f Privacy thrugh n nging educatin and training prgrams. Implement measures t ensure privacy by design and default, wherever applicable, such as Data minimizatin, Pseudnymizatin, and Annymizatin. Versin Apr-2018 Uncntrlled When Printed Page 3
4 Ensure the respnsibility and accuntability t relevant peple thrughut the rganizatin and ensure cmmunicatin f this plicy. Manage the data prtectin risks by identifying, evaluating and mitigating. Cntinually imprve the persnal infrmatin management system thrugh privacy enhancing innvatins. 4. Rles and Respnsibilities under GDPR Tp Management and all thse in senir managerial rle at Pyramid are respnsible fr spnsring & apprving funds required fr GDPR implementatin, Apprving data prtectin/privacy plicy and its bjectives, Ensuring that cmpliance with data prtectin legislatin under the DPA, EU GDPR, any ther data prtectin legislatin and gd practice can be demnstrated as defined in dcument Rles and Respnsibilities Since nne f the data prcessing at Pyramid is being dne under article 37.1 the designatin f Data Prtectin Officer is nt mandatry. Hwever, Anand Kapr ( anand.kapr@pyramidci.cm) has been appinted as Data Prtectin Officer/GDPR wner and is respnsible fr cmpliance under GDPR. Data Prtectin Officer/GDPR wner is respnsible fr single pint f cntact fr GDPR related activities, ensuring implementatin f the data prtectin plicy, training and nging awareness as required by the data prtectin plicy etc. as defined in dcument Rles and Respnsibilities. Internal Auditr is respnsible fr making judgment n the effectiveness f the data prtectin/privacy plicies, prcedures etc., reprting internal audit findings t the tp management/dpo and recmmending the crrective measures etc. as defined in dcument Rles and Respnsibilities. Emplyees are respnsible fr ensuring that they cmply with data prtectin/privacy plicy and its bjectives, adheres t data prtectin/privacy plicy directins such as cnsent management, dcument retentin, detectin f data breach and breach ntificatin etc. as defined in dcument Rles and Respnsibilities. FR_GDP_COM15-Rles & Respnsibilities 5. Data prtectin principles All prcessing f persnal data at Pyramid is cnducted in accrdance with the data prtectin principles as set ut in Article 5 f the GDPR. Pyramid plicies and prcedures are designed t ensure cmpliance with the principles. Persnal data must be prcessed lawfully, fairly and transparently. Lawful identify a lawful basis befre yu can prcess persnal data. These are ften referred t as the cnditins fr prcessing, fr example cnsent. Fairly in rder fr prcessing t be fair, the data prcessr has t make certain infrmatin available t the data subjects as practicable. This applies whether the persnal data was btained directly frm the data subjects r frm ther surces. Transparently the GDPR includes rules n giving privacy infrmatin t data subjects in Articles 12, 13 and 14. These are detailed and specific, placing an emphasis n making privacy ntices understandable and accessible. Infrmatin must be cmmunicated t the data subject using clear and plain language. The specific infrmatin that must be prvided t the data subject, as a minimum, include: Versin Apr-2018 Uncntrlled When Printed Page 4
5 Identity and the cntact details f the prcessr and/r prcessr's representative. Cntact details f the Data Prtectin Officer r similar rle. Purpses f the prcessing fr which the persnal data are intended as well as the legal basis fr the prcessing. Perid fr which the persnal data will be stred. Existence f the rights t request access, rectificatin, erasure r t bject t the prcessing, and the cnditins relating t exercising these rights, such as whether the lawfulness f previus prcessing will be affected. Categries f persnal data cncerned (Nte: This is nt applicable as per GDPR article 30, because the n f cnsultants placed by Pyramid are less than 250). Recipients r categries f recipients f the persnal data, where applicable (Nte: This is nt applicable as per GDPR article 30, because the n f cnsultants placed by Pyramid are less than 250). Where applicable, that the prcessr intends t transfer persnal data t a recipient in a third cuntry and the level f prtectin affrded t the data. Any further infrmatin necessary t guarantee fair prcessing. Persnal data can nly be cllected fr specific, explicit and legitimate purpses. Data btained fr specified purpses must nt be used fr a purpse that differs frm thse frmally ntified t the supervisry authrity as part f GDPR register f prcessing. This is defined in PIM Plicy. Persnal data must be adequate, relevant and limited t what is necessary fr prcessing (Data Minimizatin). The Data Prtectin Officer/GDPR wner is respnsible fr ensuring that Pyramid des nt cllect infrmatin that is nt required fr the purpse fr which it is btained. All data cllectin frms (electrnic r paper-based), including data cllectin requirements include a Data Prtectin Plicy r link t Data Prtectin Plicy and apprved by the Data Prtectin Officer. Data Prtectin Officer will ensure that, n an annual basis all data cllectin methds are reviewed by internal audit r external experts t ensure that cllected data cntinues t be adequate, relevant and nt excessive. Data Prtectin Officer is respnsible t ensure that Persnal data is accurate and kept up t date with every effrt t erase r rectify withut delay. Data that is stred by the data prcessr must be reviewed and updated as necessary. N data shuld be kept unless it is reasnable t assume that it is accurate. Ensure that all emplyees are trained in the imprtance f cllecting accurate data and maintaining it. It is als the respnsibility f the data subject t ensure that data held by Pyramid is accurate and up t date. Cmpletin f a registratin r applicatin frm by a data subject will include a statement that the data cntained therein is accurate at the date f submissin. Emplyees/Clients/Vendrs shuld be required t ntify Pyramid f any changes in circumstance t enable persnal recrds t be updated accrdingly as defined in prcedure PR_GDP_COM05-GDP. It is the respnsibility f Pyramid t ensure that any ntificatin regarding change f circumstances is recrded and acted upn. The Data Prtectin Officer is respnsible fr ensuring that apprpriate prcedures and plicies are in place t keep persnal data accurate and up t date, taking int accunt the vlume f data cllected, the speed with which it might change and any ther relevant factrs. Data Prtectin Officer will review the retentin dates f all the persnal data prcessed by Pyramid, by reference t the data inventry, and will identify any data that is n lnger required in the cntext f the registered purpse as defined in Dcument Retentin Plicy. This data will be securely deleted/destryed in line with the Secure Dispsal as defined in Data & Media Handling Plicy. Versin Apr-2018 Uncntrlled When Printed Page 5
6 The Data Prtectin Officer is respnsible fr respnding t requests fr rectificatin frm data subjects within ne mnth as defined in prcedure PR_GDP_COM05-GDP. This can be extended t a further tw mnths fr cmplex requests. If Pyramid decides nt t cmply with the request, the Data Prtectin Officer/GDPR Owner must respnd t the data subject t explain its reasning and infrm them f their right t cmplain t the supervisry authrity and seek judicial remedy. The Data Prtectin Officer/GDPR Owner is respnsible fr making apprpriate arrangements that, where third-party rganizatins may have been passed inaccurate r ut-f-date persnal data, t infrm them that the infrmatin is inaccurate and/r ut f date and is nt t be used t infrm decisins abut the individuals cncerned; and fr passing any crrectin t the persnal data t the third party where this is required. Persnal data must be kept in a frm such that the data subject can be identified nly as lng as is necessary fr prcessing. Where persnal data is retained beynd the prcessing date, it will be [minimised/encrypted/pseudnymised] in rder t prtect the identity f the data subject in the event f a data breach as defined in prcedure PR_GDP_COM05-GDP. Persnal data is t be retained as defined in Dcument Retentin Plicy and, nce its retentin date is passed, it must be securely destryed as defined in Data & Media Handling Plicy. The Data Prtectin Officer/GDPR Owner must specifically apprve any data retentin that exceeds the retentin perids defined in Dcument Retentin Plicy, and must ensure that the justificatin is clearly identified and in line with the requirements f the data prtectin legislatin.. Persnal data must be prcessed in a manner that ensures the apprpriate security. The Data Prtectin Officer/GDPR Owner will carry ut a risk assessment taking int accunt all the circumstances f Pyramid s cntrlling r prcessing peratins. In determining apprpriateness, the Data Prtectin Officer/GDPR Owner shuld als cnsider the extent f pssible damage r lss that might be caused t individuals (e.g. emplyees r custmers) if a security breach ccurs, the effect f any security breach n Pyramid itself, and any likely reputatinal damage including the pssible lss f custmer trust. When assessing apprpriate technical and rganizatinal measures, the Data Prtectin Officer/GDPR Owner will cnsider the fllwing: Passwrd prtectin as defined in Passwrd Security Plicy. Autmatic lcking f idle terminals as defined in Acceptable Usage Plicy. Remval f access rights fr USB and ther memry media as defined in Access Cntrl Plicy and prcedure Systems Administratin. Virus checking sftware and firewalls as defined in Firewall Management Plicy, and prcedure Systems Administratin. Rle-based access rights including thse assigned t temprary staff as defined in prcedure Systems Administratin. Encryptin f devices that emplyees take them alng while ging hme such as laptps as defined in Encryptin Plicy and prcedure Systems Administratin. Security f lcal and wide area netwrks as defined in prcedure Systems Administratin. Privacy enhancing technlgies such as pseudnymizatin and annymizatin. Identifying apprpriate internatinal security standards relevant t Pyramid. Regular training sessins and awareness wrkshps t relevant emplyees. Measures that cnsider the reliability f emplyees (e.g. Backgrund Verificatin). The inclusin f data prtectin clauses in emplyment cntracts. Identificatin f disciplinary measures fr data breaches. Mnitring f emplyees fr cmpliance with relevant security standards. Physical access cntrls t electrnic and paper-based recrds. Adptin f a clear desk plicy as defined in Acceptable Usage Plicy. String f paper-based data in lckable cabinets as defined in Acceptable Usage Plicy. Restricting the use f prtable electrnic devices utside f the wrkplace. Prhibiting the use f emplyee s wn persnal devices being used in the wrkplace as defined in Acceptable Usage Plicy. Strictly fllwing clear rules abut passwrds as defined in Passwrd Security Plicy. Versin Apr-2018 Uncntrlled When Printed Page 6
7 Making regular backups f persnal data and string the media in a secure place. As defined in Backup Plicy. The abve mentined cntrls have been selected n the basis f identified risks t persnal data, and the ptential fr damage r distress t individuals whse data is being prcessed. Pyramid s cmpliance with this principle is cntained in its Infrmatin Security Management System (ISMS), which is already in practice since year 2012 in line with ISO/IEC and the infrmatin security plicy as defined in Infrmatin Security Plicy. Pyramid must be able t demnstrate cmpliance with the GDPR s ther principles (accuntability) The GDPR includes prvisins that prmte accuntability and gvernance. These cmplement the GDPR s transparency requirements. The accuntability principle in Article 5(2) requires Pyramid t demnstrate that we cmply with the principles and states explicitly that this is ur respnsibility. Pyramid will demnstrate cmpliance with the data prtectin principles by implementing data prtectin plicies, adhering t cdes f cnduct, implementing technical and rganizatinal measures, as well as adpting techniques such as data prtectin by design, risk assessment, breach ntificatin prcedures and incident respnse plans. GP-GDP_COM03-PIM Plicy SP_SEC_COM02-Infrmatin Security Plicy SP_SEC_COM20-Data & Media Handling Plicy SP_SEC_COM05-Acceptable Usage Plicy SP_SEC_COM18-Passwrd Security Plicy SP_SEC_COM07-Dcument Retentin Plicy SP_SEC_COM25-Access Cntrl Plicy SP_SEC_COM45-Firewall Management Plicy SP_SEC_COM27-Encryptin Plicy PR_SUP_COM25-System Administratin 6. Data Subject Rights Data subjects have the fllwing rights regarding data prcessing, and the data that is recrded abut them: T make subject access requests regarding the nature f infrmatin held and t whm it has been disclsed. Prevent prcessing, which is likely t cause damage r distress. Prevent prcessing fr purpses f direct marketing. Be infrmed abut the mechanics f autmated decisin-taking prcess that will significantly affect them. Sue fr cmpensatin if they suffer damage by any cntraventin f the GDPR. Take actin t rectify, blck, erase, including the right t be frgtten, r destry inaccurate data. Request the supervisry authrity t assess whether any prvisin f the GDPR has been cntravened. Versin Apr-2018 Uncntrlled When Printed Page 7
8 Persnal data prvided t them in a structured, cmmnly used and machine-readable frmat, and the right t have that data transmitted t anther prcessr r cntrller. Object t any autmated prfiling that is ccurring withut cnsent. Make data access requests. Cmplain t Pyramid at supprtgdpr@pyramidci.cm related t the prcessing f their persnal data, and appeal n hw cmplaints have been handled. 7. Cnsent Management Pyramid understands that Cnsent is explicitly and freely given. Cnsent is specific, infrmed and unambiguus indicatin f the data subject s wishes by statement r by a clear affirmative actin. It signifies agreement t the prcessing f persnal data relating t data subject. The data subject can withdraw their cnsent at any time. Pyramid understands that data subject has been fully infrmed f the intended prcessing and has signified their agreement, while in a fit state f mind t d s and withut pressure being exerted upn them. Cnsent btained under duress r n the basis f misleading infrmatin will nt be a valid basis fr prcessing. The basis f Cnsent is the active cmmunicatin between the parties. Cnsent cannt be inferred frm nnrespnse t a cmmunicatin. It is the respnsibility f the prcessr t demnstrate that cnsent was btained fr the prcessing peratin. Pyramid has t btain explicit written cnsent fr sensitive data f data subjects as defined in prcedure PR_GDP_COM05-GDP. In mst instances, cnsent t prcess persnal and sensitive data is btained rutinely by Pyramid using Cnsent Frm. Pyramid is nt prviding the services t children as f nw. The GDPR clause related t children is Nt Applicable. PR_GDP_COM05-GDP FR_GDP_COM05-Cnsent Frm 8. Security f Data All Emplyees are respnsible fr ensuring that any persnal data is kept securely and is nt under any cnditins disclsed t any third party unless that third party has been specifically authrized by Pyramid t receive that infrmatin and has entered int a cnfidentiality agreement. All persnal data shuld be accessible nly t thse wh need t use it. All persnal data shuld be treated with the highest security and must be kept: Under lck in a lcked drawer r filing cabinet (Physical dcuments) Under passwrd prtected as defined in Access Cntrl Plicy. Stred n (remvable) cmputer media which are encrypted as defined in Data & Media Handling Plicy. Versin Apr-2018 Uncntrlled When Printed Page 8
9 Care must be taken t ensure that Laptp and PC screens are nt visible except t authrized emplyees f the divisin. All Emplyees are required t sign the Acceptable Usage Plicy befre they are given access t rganizatinal infrmatin. Manual recrds may nt be left where they can be accessed by unauthrized persnnel and may nt be remved frm business premises withut written authrizatin. As sn as manual recrds are n lnger required fr day-t-day client supprt, they must be remved frm secure archiving. Persnal data may nly be deleted r dispsed f in line with the Dcument Retentin Plicy. Manual recrds that have cmpleted their retentin perid are t be shredded and dispsed-ff. Hard drives f redundant PCs are t be remved and immediately destryed as defined in Data & Media Handling Plicy. SP_SEC_COM25-Access Cntrl Plicy SP_SEC_COM20-Data & Media Handling Plicy SP_SEC_COM05-Acceptable Usage Plicy SP_SEC_COM07-Dcument Retentin Plicy 9. Disclsure f Data Pyramid ensures that persnal data is nt disclsed t any unauthrized persns (e.g. family members, friends, gvernment bdies, plice etc.). All Emplyees exercise cautin when asked t disclse persnal data f data subjects t a third party. The regular awareness sessins cnducted fr the emplyees f the respective divisin helps them t deal effectively with any such risk assciated with disclsure f data. All requests t prvide data fr disclsures are ruted t Data Prtectin Officer (DPO) fr actin. 10. Retentin and Dispsal f Data Pyramid will nt keep persnal data in a frm that permits identificatin f data subjects and fr lnger a perid than is necessary, in relatin t the purpse(s) fr which the data was riginally cllected. Pyramid may stre data fr lnger perids if the persnal data is prcessed slely fr archiving purpses in the public interest, scientific r histrical research purpses r statistical purpses, subject t the implementatin f apprpriate technical and rganizatinal measures t safeguard the rights and freedms f the data subject. The retentin perid fr persnal data is defined in Dcument Retentin Plicy alng with the statutry bligatins Pyramid has t retain the data. Persnal data must be dispsed f securely in accrdance with the sixth principle f the GDPR prcessed in an apprpriate manner t maintain security, thereby prtecting the rights and freedms f data subjects. Any dispsal f data will be dne in accrdance with the Data & Media Handling Plicy. SP_SEC_COM20-Data & Media Handling Plicy SP_SEC_COM07-Dcument Retentin Plicy 11. Data Transfer All imprts f data frm within the Eurpean Ecnmic Area (EEA) t Pyramid (referred t in the GDPR as third cuntries ) are received as defined in Infrmatin Transfer Plicy. Versin Apr-2018 Uncntrlled When Printed Page 9
10 SP_SEC_COM30-Infrmatin Transfer Plicy 12. Persnnel Data Inventry Pyramid has established a data inventry as part f its apprach t address risks and pprtunities thrughut its GDPR life-cycle. The data inventry includes: Business prcess that use persnal data. Surce f persnal data. Vlume f data subjects. Descriptin f each item f persnal data. Prcessing activity. Inventry f data categries f persnal data prcessed, if applicable. Dcuments the purpse(s) fr which each categry f persnal data is used, if applicable. Recipients, and ptential recipients, f the persnal data, if applicable. key systems and repsitries; Data transfer details. Dcument retentin requirements and dispsal. Pyramid is aware f any risks assciated with the prcessing f particular types f persnal data. Pyramid assesses the level f risk t data subjects assciated with the prcessing f their persnal data. Risk assessment are carried ut in relatin t the prcessing f persnal data by Pyramid, and in relatin t prcessing undertaken by ther parties n behalf f Pyramid in rder t reduce the likelihd f a data breach. Pyramid carry ut a risk assessment t find ut the impact n the prcessing peratins n the prtectin f persnal data, where new technlgies are used, resulting int high risk t the rights and freedms f data subjects. The Data Prtectin Officer may escalate the matter t the supervisry authrity, if it ntices that prcessing f persnal data using new technlgies culd cause damage and/r distress t the data subjects. Pyramid is certified fr ISO and maintain this status since year In view f this, Pyramid will leverage the best practices f ISO cntrls and will apply t reduce the level f risk assciated with prcessing f persnal data t an acceptable level. FR_SEC_COM27-Risk Assessment Versin Apr-2018 Uncntrlled When Printed Page 10
Subject Access Requests
Subject Access Requests The Data Prtectin Act 1998 gives rights t individuals in respect f the persnal data that rganisatins hld abut them. One f thse rights is the right t get a cpy f the infrmatin that
More informationRECRUITMENT & SELECTION PRIVACY NOTICE May 2018
This ntice explains hw Biffa cllects and uses persnal data during the recruitment and selectin prcess. The Table at the end f this ntice prvides an verview f the persnal data that we cllect, the purpses
More informationDATA PROTECTION POLICY FOR PUPILS AND PARENTS
DATA PROTECTION POLICY FOR PUPILS AND PARENTS This Plicy is relevant t the whle schl including EYFS Cntents 1.0 Intrductin 2.0 Respnsibility fr data prtectin 3.0 Types f persnal data prcessed by the schl
More informationData Protection Policy
Data Prtectin Plicy PLEASE NOTE: A new Data Prtectin Plicy, cmpliant with the requirements f the Data Prtectin Act 2018 and the Eurpean General Data Prtectin Regulatin (GDPR), is currently underging the
More informationSummit Asset Managers Limited
Irish Infrastructure Trust Privacy Ntice Intrductin This ntice sets ut details f hw and why Summit Asset Managers Limited, f Beresfrd Curt,, Dublin 1, Ireland, acting n behalf the Irish Infrastructure
More informationTriodos Bank. UK Recruitment Privacy Statement
Trids Bank. UK Recruitment Privacy Statement The Trids Bank UK (TBUK) recruitment Privacy Statement prvides transparency n hw yur persnal data will be cllected and used during the recruitment and selectin
More informationHIPAA Privacy Rule LINKS AND RESOURCES AFFECTED ENTITIES IMPACT ON EMPLOYERS. Provided by Brown & Brown of Louisiana, LLC
Prvided by Brwn & Brwn f Luisiana, LLC HIPAA Privacy Rule The HIPAA Privacy Rule establishes natinal standards t prtect individuals medical recrds and ther persnal health infrmatin. The Privacy Rule applies
More informationPrivacy & Data Protection Policy
Privacy & Data Prtectin Plicy Whitby & District Fishing Industry Training Schl Limited and 54 Nrth Maritime Training ("Whitby Fishing Schl", WDFITS, 54 Nrth Maritime "we" r "us") are cmmitted t prmting
More informationBECCLES INDOOR BOWLS CLUB
. BECCLES INDOOR BOWLS CLUB PRIVACY NOTICE FOR OUR MEMBERS We are cmmitted t respecting yur privacy. This ntice is t explain hw we may use persnal infrmatin we cllect befre, during and after yur membership
More informationData Protection Code of Practice
Data Prtectin Cde f Practice Data Prtectin Cde f Practice 1 1 Intrductin 1.1 This Cde f Practice has been apprved by the Bard f Gvernrs f Sussex Cast Cllege Hastings as part f its cmmitment t its legal
More informationAudit and Risk Management Committee Charter
Audit and Risk Management Cmmittee Charter Pivtal Systems Crpratin ("Cmpany") 1. Objectives The Audit and Risk Management Cmmittee (Cmmittee) has been established by the bard f directrs (Bard) f the Cmpany.
More informationPurpose... 1 Definitions... 1 Policy... 2
Cntents Purpse... 1 Definitins... 1 Plicy... 2 1. Privacy Principles... 2 2. Cllectin f infrmatin... 2 3. Unique Student Identifiers (USI)... 3 4. Strage and use f infrmatin... 4 5. Disclsure f infrmatin...
More informationA-1110 Wien. Privacy Notice
Eurfins Lebensmittelanalytik Tel. +43 (1) 944 33 44-0 ffice@eurfins.at www.eurfins.at Privacy Ntice Table f cntents 1 Cntrller infrmatin... 2 2 What infrmatin shuld yu give Eurfins?... 2 3 Why d we use
More informationGENERAL DATA PROTECTION REGULATION (GDPR) POLICY
GENERAL DATA PROTECTION REGULATION (GDPR) POLICY Apprved: 20.02.18 Review Date: February 2019 1. Legal framewrk 1.1 This plicy has due regard t legislatin, including, but nt limited t the fllwing: The
More informationPSNC Briefing on the NHS Complaints procedure (from 1 April 2009)
PSNC Briefing n the NHS Cmplaints prcedure (frm 1 April 2009) Under the prvisins f the Natinal Health Service (Pharmaceutical Services) Regulatins 2005 1 pharmacy cntractrs are required t make arrangements
More informationInformation concerning the constitution, goals and functions of the agency, including 1 :
Annual Reprt cmpliance checklist This checklist utlines the gvernance, perfrmance, reprting cmpliance and prcedural requirements f the Financial Administratin and Audit Act 1977 and the Financial Management
More informationThis Privacy Notice applies to La Prairie employees, applicants and, where applicable, to contractors who provide services to La Prairie.
EMPLOYEE PRIVACY NOTICE Last updated 24 May, 2018. What des this ntice cver? References in this Privacy Ntice t La Prairie, we r us shall mean the La Prairie grup cmpany t which yu are applying r by which
More informationAre you ready for the FUTURE of your Quality Management system?
1 Are yu ready fr the FUTURE f yur Quality Management system? BACKGROUND Quality Management System standard, ISO 9001 has made sme majr changes released in September 2015. Organizatins are studying and
More informationLMA GUIDANCE: GDPR CORE USES INFORMATION NOTICE
LMA GUIDANCE: GDPR CORE USES INFORMATION NOTICE FEBRUARY 2018 NOTE: This guidance and the Lndn Market Cre Uses Infrmatin Ntice will be updated when the UK Data Prtectin Bill is enacted the Bill currently
More informationHow to Become a Delaware Public Benefit Corporation
Hw t Becme a Delaware Public Benefit Crpratin This utline describes the majr steps required fr an existing Delaware crpratin t becme a Delaware public benefit crpratin. 1. Summary. In rder t becme a public
More informationRisk and Audit Committee charter
Risk and Audit Cmmittee charter 1. Intrductin The Bard f Cffey Internatinal Limited ( Cffey r the Cmpany ) has established a Risk and Audit Cmmittee ( Cmmittee ). It is nted that the Cmmittee is a sub-cmmittee
More informationAusNet Electricity Services Pty Ltd. Information Sharing Protocol and Register
AusNet Electricity Services Pty Ltd Infrmatin Sharing Prtcl and Register 1 BACKGROUND This is AusNet Electricity Distributin Pty Ltd s ( DNSP s) infrmatin sharing prtcl, and infrmatin sharing register,
More informationNCTJ Conflicts of Interest Policy and Procedures
NCTJ Cnflicts f Interest Plicy and Prcedures Purpse This plicy aims t draw attentin t the pssibility f cnflicts, minimise r prevent a cnflict ccurring and manage cnflicts that have arisen. Definitin f
More information[AGENCY NAME] Mandate and Roles Document. (Pure Advisory Committees)
[This sample dcument has been develped by the Agency Gvernance Secretariat. It is intended t be used fr infrmatinal purpses nly. Agencies are encuraged t adapt the dcument t meet their specific needs.
More informationUK Employment Law Changes in 2010: New Statutory Rates, Limits and Entitlements
February 2010 UK Emplyment Law Changes in 2010: New Statutry Rates, Limits and Entitlements BY CHRIS BRACEBRIDGE AND ANNA SANFORD At a Glance Varius changes t emplyment related cmpensatin, benefit and
More informationPrivacy Notice for Applicants and Tenants
Privacy Ntice fr Applicants and Tenants What we need Scttish Brders Husing Assciatin (SBHA) will be a "cntrller" f the persnal infrmatin that yu prvide t us thrugh yur cmpleted Husing Applicatin Frm, and
More informationRISK MANAGEMENT AND BUSINESS CONTINUANCE A FAIS Standard. An AC Guidance Note. July 2010
RISK MANAGEMENT AND BUSINESS CONTINUANCE A FAIS Standard An AC Guidance Nte July 2010 Risk Management and Business Cntinuance - A FAIS standard The General Cde f cnduct deals in a number f ways with the
More informationDATA PROTECTION POLICY: PUPILS AND PARENTS
DATA PROTECTION POLICY: PUPILS AND PARENTS 1 Abut this Plicy The privacy f ur pupils and parents is very imprtant t the schl and we have taken steps t prtect it. This plicy explains hw we use (r "prcess")
More informationStakeholder Relations and Communications Policy
Stakehlder Relatins and Cmmunicatins Plicy Effective January 15, 2008 Apprved by the Bard f Directrs n January 15, 2008 TABLE OF CONTENTS Sectin I Stakehlder Relatins and Cmmunicatins Plicy 1 NOVA SCOTIA
More informationTD Insurance s Multi-Year Accessibility Plan
TD Insurance s Multi-Year Accessibility Plan TABLE OF CONTENTS... 1 INTRODUCTION AND STATEMENT OF COMMITMENT... 1 OUR PLAN... 1 ACCESSIBILITY POLICIES...1 TRAINING...1 INFORMATION COMMUNICATION STANDARDS...2
More informationMiFID Supervisory Briefing Appropriateness and execution-only
MiFID Supervisry Briefing Apprpriateness and executin-nly 19 December 2012 ESMA/2012/851 Date: 19 December 2012 ESMA/2012/851 I. Backgrund 1. ESMA is required t play an active rle in building a cmmn supervisry
More informationTERMS OF REFERENCE FOR THE PROVISION OF OUTSOURCED INTERNAL AUDIT SERVICE
W&RSETA Standard Bidding Dcuments Terms f Reference TERMS OF REFERENCE FOR THE PROVISION OF OUTSOURCED INTERNAL AUDIT SERVICE 1 W&RSETA Standard Bidding Dcuments Terms f Reference 1. BACKGROUND TO W&RSETA
More informationMiFID Supervisory Briefing Suitability
MiFID Supervisry Briefing Suitability 19 December 2012 ESMA/2012/850 Date: 19 December 2012 ESMA/2012/850 I. Backgrund 1. ESMA is required t play an active rle in building a cmmn supervisry culture by
More informationTerms of Reference - Board of Directors (approved by the Board on 12 April 2018)
Terms f Reference - Bard f Directrs (apprved by the Bard n 12 April 2018) 1. Respnsibility and Principal Duties The Bard f Directrs has the verall respnsibility fr the gvernance f the Cmpany and fr supervising
More informationLocal Code Of Corporate Governance
Lcal Cde Of Crprate Gvernance Apprved by Jint Cmmittee 26 June 2017 Reprt N JC 09/2017 LOCAL CODE OF CORPORATE GOVERNANCE INTRODUCTION Crprate gvernance is the cmbinatin f prcesses and structures implemented
More informationWork Instruction. for Change Management. Work Instruction Administrator John Doe Chief Corporeal Officer ACME
Wrk Instructin fr Change Management Wrk Instructin Administratr Jhn De Chief Crpreal Officer Wrk Instructin Authr Benjamin M.A. Rbsn Directr f Operatins IPSec Pty Ltd Date f Last Update 3/05/2011 12 Mrtuary
More informationGuidelines and Recommendations Guidelines on periodic information to be submitted to ESMA by Credit Rating Agencies
Guidelines and Recmmendatins Guidelines n peridic infrmatin t be submitted t ESMA by Credit Rating Agencies 23 June 2015 ESMA/2015/609 Table f Cntents 1 Scpe... 3 2 Definitins... 3 3 Purpse f Guidelines...
More informationWhat credit related information do we collect and hold and how do we collect it?
In this Credit Reprting Plicy, ORIX, we, us and ur mean ORIX Australia Crpratin Limited and ur related cmpanies. Thse related cmpanies may als have their wn privacy r credit reprting plicies which set
More informationHIPAA Privacy & Security Omnibus Changes 2013
HIPAA Privacy & Security Omnibus Changes 2013 The Federal Gvernment has published mdificatins t 45 CFR Parts 160 and 164: Mdificatins t the HIPAA Privacy, Security, Enfrcement, and Breach Ntificatin Rules
More informationQueen s University Housing & Hospitality Services Residence Agreement. Graduate Students - Confederation Place Hotel
Queen s University Husing & Hspitality Services Residence Agreement Graduate Students - Cnfederatin Place Htel All students are expected t regulate their cnduct accrding t reasnable standards f curtesy
More informationTelephone: Fax: Web: Job Description
Jb Descriptin Psitin: Accuntability: Functin: Chief Executive Bard f Directrs The Chief Executive is respnsible t the Bard f Directrs thrugh the Chair f the Bard. The Pst Hlder has delegated respnsibility
More informationElmwood Infant and Nursery School
Elmwd Infant and Nursery Schl Data Prtectin Plicy Linked t the General Data Prtectin Regulatin (GDPR) February 2018 Article 3 - the best interests f the child must be a tp pririty in all decisins and actins
More informationJOHN L. LITTLE, D.D.S, P.A ACKNOWLEDGEMENT OF RECEIPT OF NOTICE OF PRIVACY PRACTICES. May Refuse to Sign This Acknowledgement-
JOHN L. LITTLE, D.D.S, P.A ACKNOWLEDGEMENT OF RECEIPT OF NOTICE OF PRIVACY PRACTICES -Yu I, Privacy Practices. May Refuse t Sign This Acknwledgement- ---, have received a cpy f this ffice's Ntice f {Please
More informationWe process personal data for some or all of the following purposes depending on our relationship with the individual data subject:
PRIVACY POLICY Our purpses fr prcessing yur persnal data We prcess persnal data fr sme r all f the fllwing purpses depending n ur relatinship with the individual data subject: T adhere with all statutry
More informationManual of Administrative Policies and Procedures
Manual f Administrative Plicies and Prcedures POLICY 1.49 Cntract Management and Signing Authrity Plicy Categry: General Related Prcedures: Prcedures fr Negtiating, Apprving and Signing University Cntracts
More informationDepartment of Environment Land, Water and Planning
Department f Envirnment Land, Water and Planning Psitin purpse The Senir Plicy Officer is part f the Building Unit which is respnsible fr the delivery f plicies and brad based strategies t achieve imprved
More informationEuropa Group Privacy Policy
Eurpa Grup Privacy Plicy The privacy and security f yur persnal infrmatin is very imprtant t us (Eurpa Grup). This plicy explains hw we cllect and use yur persnal infrmatin. Please read it carefully. This
More informationPAYMENT BY CARD TERMS & CONDITIONS
PAYMENT BY CARD TERMS & CONDITIONS Versin 2.0 - June 2013 Effective frm 1 st June 2013 Issued n 1 st June 2013 Terms & Cnditins fr use f Credit/Debit card fr Payments (POS) Intrductin This Service is ffered
More informationInternational Standard on Auditing (Ireland) 265. Communicating Deficiencies in Internal Control to Those Charged with Governance and Management
Internatinal Standard n Auditing (Ireland) 265 Cmmunicating Deficiencies in Internal Cntrl t Thse Charged with Gvernance and Management MISSION T cntribute t Ireland having a strng regulatry envirnment
More informationBest Execution & Client Order Execution Policy. October P age 1 6. BE31/10/17 v1
Best Executin & Client Order Executin Plicy Octber 2017 BE31/10/17 v1 P age 1 6 Cntents 1. Backgrund... 3 2. Order placement... 3 3. Order executin factrs... 3 4. Order executin plicy... 3 5. Order executin
More informationTHE CLOROX COMPANY AUDIT COMMITTEE CHARTER. [Effective May 8, 2017]
THE CLOROX COMPANY AUDIT COMMITTEE CHARTER [Effective May 8, 2017] PURPOSE AND AUTHORITY The Audit Cmmittee ( Cmmittee ) is established by the Bard f Directrs ( Bard ) fr the purpses f: 1. Representing
More informationPolicy Coversheet. Link Tutors: appointment and responsibilities
Plicy Cversheet Name f Plicy: Link Tutrs: appintment and respnsibilities Purpse f Plicy: Intended audience(s): Apprval fr this plicy given by: T utline the arrangements fr the appintment f University Link
More informationSchool Business Manager
Plicy Title: Risk Assessment Plicy Authr: Schl Business Manager Audience: Staff Reviewed by: Gvernrs Review frequency: Annual Reviewed when: Octber 2016 Risk Assessment Plicy Intrductin Nrthease Manr Schl
More informationCorporate Governance Principles
Crprate Gvernance Principles Revised 05-03-2018 Amphenl s Crprate Gvernance Principles have been apprved by the Bard f Directrs and, tgether with the Cmpany s Certificate f Incrpratin, as amended and/r
More informationGuidelines for submission to the NSW Population and Health Services Research Ethics Committee. Version June 2015
Guidelines fr submissin t the NSW Ppulatin and Health Services Research Versin 3.0 18 June 2015 Cntents Sectin 1: Intrductin... 3 Sectin 2: Research Gvernance... 4 Sectin 3: Submissins t the NSW PHSREC...
More informationThe Company is a public company incorporated in Bermuda and its securities are listed on AIM.
(Incrprated in Bermuda Registratin N. 44512) POLICY FOR TRADING IN COMPANY SECURITIES The Cmpany is a public cmpany incrprated in Bermuda and its securities are listed n AIM. Schedule 1 t this Plicy cntains
More informationUnderstanding Self Managed Superannuation Funds
Understanding Self Managed Superannuatin Funds Hw t read this dcument Managing yur finances t meet yur day t day requirements as well as yur lng-term gals can be a cmplex task. There are all srts f issues
More informationNANOSTRING TECHNOLOGIES, INC. COMPENSATION COMMITTEE CHARTER. (Adopted as of October 16, 2012 and amended as of April 26, 2017)
NANOSTRING TECHNOLOGIES, INC. COMPENSATION COMMITTEE CHARTER (Adpted as f Octber 16, 2012 and amended as f April 26, 2017) PURPOSE The purpse f the Cmpensatin Cmmittee (the Cmmittee ) f the Bard f Directrs
More informationWHOLESALE AND RETAIL SETA. Skills Development for Economic Growth. ETQA Assessor and Moderator Registration Policy
WHOLESALE AND RETAIL SETA Skills Develpment fr Ecnmic Grwth ETQA Assessr and Mderatr Registratin Plicy WHOLESALE AND RETAIL SETA ETQA ASSESSOR AND MODERATOR POLICY Effective Date: 00/00/2007 Dc ID: Rev:
More informationSTATE OF NEW YORK MUNICIPAL BOND BANK AGENCY
STATE OF NEW YORK MUNICIPAL BOND BANK AGENCY Recvery Act Bnd Prgram Written Prcedures fr Tax Cmpliance and Internal Mnitring, adpted September 12, 2013 PROGRAM OVERVIEW The State f New Yrk Municipal Bnd
More informationAudit Committee Charter. St Andrew s Insurance (Australia) Pty Ltd St Andrew s Life Insurance Pty Ltd St Andrew s Australia Services Pty Ltd
Audit Cmmittee Charter St Andrew s Insurance (Australia) Pty Ltd St Andrew s Life Insurance Pty Ltd St Andrew s Australia Services Pty Ltd Versin 3.0, 19 February 2018 Apprver Bard f Directrs St Andrew
More informationCODE OF CONDUCT AND ETHICS POLICY ON CONFLICTS OF INTEREST
CODE OF CONDUCT AND ETHICS POLICY ON CONFLICTS OF INTEREST Magna Internatinal Inc. Plicy n Gifts & Entertainment 1 POLICY ON CONFLICTS OF INTEREST Magna emplyees have a duty t act in Magna s best interest.
More informationSTANDARD OF PRACTICE (7): ADVERTISING
STANDARD OF PRACTICE (7): ADVERTISING Apprved by the Cuncil n February 6, 2017 Standard f Practice: Advertising Standard f Practice: Advertising Nte t readers: In the event f any incnsistency between this
More informationAUDIT COMMITTEE CHARTER
AUDIT COMMITTEE CHARTER WBHO Audit Cmmittee Charter Page 1 f 9 Intrductin The Audit Cmmittee is cnstituted as a statutry cmmittee f the Cmpany in respect f its statutry duties in terms f Sectin 94(1) f
More informationBROCKTON AREA MULTI-SERVICES, INC. ORGANIZATION AND POLICY GUIDE
Page 1 f 6 Subject: Plicy and Prcedure Regarding Prgressive Disciplinary Actin Plicy Date Develped: 7/01/06 Date(s) Reviewed/Revised: 5/4/10 PURPOSE: T define BAMSI s plicy n Prgressive Disciplinary Actin
More informationNUMBER: BUSF 3.30 Business and Finance. Other Educational and General Program Accounts ("E" Funds) Date: October 18, 2006 I. PURPOSE OF THE POLICY
NUMBER: BUSF 3.30 SECTION: Business and Finance SUBJECT: Other Educatinal and General Prgram Accunts ("E" Funds) Date: Octber 18, 2006 Plicy fr: Prcedure fr: Authrized by: Issued by: All Campuses All Campuses
More informationInternational Standard on Auditing (UK) 265
Standard Audit and Assurance Financial Reprting Cuncil June 2016 Internatinal Standard n Auditing (UK) 265 Cmmunicating Defi ciencies in Internal Cntrl t Thse Charged With Gvernance and Management The
More informationFINANCE & AUDIT COMMITTEE
FINANCE & AUDIT COMMITTEE Page 1 f 8 CHARTER f the Finance & Audit Cmmittee f the Bard Of Directrs f Spectral Medical Inc. Purpse The primary functin f the Finance & Audit Cmmittee (the Cmmittee ) f the
More informationSNAKK MEDIA LIMITED FINANCIAL PRODUCTS TRADING POLICY AND GUIDELINES
SNAKK MEDIA LIMITED FINANCIAL PRODUCTS TRADING POLICY AND GUIDELINES Date adpted: 5 Nvember 2015 Versin: 1 1 SCOPE OF POLICY FINANCIAL PRODUCTS TRADING POLICY AND GUIDELINES This plicy applies t all directrs,
More informationPRIMERICA, INC. COMPENSATION COMMITTEE CHARTER Adopted on March 31, 2010 and revised as of August 15, 2018
PRIMERICA, INC. COMPENSATION COMMITTEE CHARTER Adpted n March 31, 2010 and revised as f August 15, 2018 Missin The Cmpensatin Cmmittee (the Cmmittee ) f Primerica, Inc. (the Cmpany ) is respnsible fr determining
More informationMIFID Policy Client classification
MIFID Plicy Client classificatin Page 1 f 8 Cntents 1. Intrductin... 3 2. Purpse... 3 3. Client Classificatin... 5 a) Eligible cunterparties... 5 b) Prfessinal clients... 6 c) Retail clients... 8 d) Classificatin
More informationAudit Follow Up. Citywide Cash Controls Development and Transportation Services (Report #0134, Issued August, 2001) As of March 31, 2002
Audit Fllw Up As f March 31, 2002 Sam M. McCall, CPA, CIA, CGFM City Auditr Citywide Cash Cntrls Develpment and Transprtatin Services (Reprt #0134, Issued August, 2001) Reprt #0231 July 25, 2002 Summary
More informationGrant Application Guidelines
Grant Applicatin Guidelines The prgram staff f the Cmmunity Fundatin f Greater New Britain lks frward t wrking with yu. This frm is fr rganizatins that have submitted a Letter f Intent t us and were invited
More informationDocumentation / Other important Standards with SME perspective
Dcumentatin / Other imprtant Standards with SME perspective SME - Definitin f MSMEs in India (As Per Micr, Small & Medium Enterprises Develpment (MSMED) Act, 2006) Manufacturing Enterprises Investment
More informationTerms and Conditions 19 December 2018
Stck and Shares Lifetime ISA (Prperty Saver) Terms and Cnditins 19 December 2018 These Terms, tgether with the Applicatin Frm, frm a legal agreement between yu and us which sets ut hw the Lifetime ISA
More informationHuntington Bancshares Incorporated
Audit Cmmittee Apprved By: Bard f Directrs Huntingtn Bancshares Incrprated Apprval Date 1 f 6 Purpse f Cmmittee The Audit Cmmittee (Cmmittee) is established by the Bard f Directrs (Bard) t assist the Bard
More informationHEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT (HIPAA) COMPLIANCE TRAINING
1 HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT (HIPAA) COMPLIANCE TRAINING Part 1: Privacy The HIPAA Privacy Rule requires the apprpriate use and disclsure f a patient's persnal health infrmatin
More informationCYBG PLC BOARD REMUNERATION COMMITTEE. Charter
Charter Cmmittee Rle The Bards Remuneratin Cmmittee will act as the bard level Remuneratin Cmmittee fr Clydesdale and Yrkshire Banking Grup ( CYBG ) PLC and its subsidiaries, including fr the avidance
More informationSRI LANKA AUDITING STANDARD 580 WRITTEN REPRESENTATIONS CONTENTS
SRI LANKA AUDITING STANDARD 580 WRITTEN REPRESENTATIONS (Effective fr audits f financial statements fr perids beginning n r after 01 January 2014) CONTENTS Paragraph Intrductin Scpe f this SLAuS... 1-2
More informationThe UK Register of Trusts 21 December 2017
The UK Register f Trusts 21 December 2017 If yu are a trustee f a UK resident trust r f a nn-resident trust which has UK assets r UK surce incme yu may need t take actin befre 5 January 2018. Backgrund
More informationApproval Process and Arrangements for University Consultancy Work
Apprval Prcess and Arrangements fr University Cnsultancy Wrk 1 Intrductin Cnsultancy activities can be separated int tw types: thse undertaken in City s name (University cnsultancy) and thse undertaken
More informationAudit Committee Charter
Audit Cmmittee Charter I. Purpse f Audit Cmmittee The purpse f the Audit Cmmittee, which is part f the Bard, shall be (a) t assist the Bard s versight f (i) the integrity f the Cmpany s financial statements,
More informationAUDIT & RISK COMMITTEE CHARTER
AUDIT & RISK COMMITTEE CHARTER Rle and Respnsibilities The Bard f The Institute f Internal Auditrs Australia (IIA-Australia) has established a Bard Audit & Risk Cmmittee as part f its respnsibilities in
More informationCORPORATE GOVERNANCE, NOMINATING & RISK COMMITTEE CHARTER
CORPORATE GOVERNANCE, NOMINATING & RISK COMMITTEE CHARTER PURPOSE The Crprate Gvernance, Nminating and Risk Cmmittee (the Cmmittee ) f Precisin Drilling Crpratin (the Crpratin ) is a permanent cmmittee
More informationAccord Group Privacy Policy
Accrd Grup (WA) Pty Ltd CERTIFIED PRACTISING ACCOUNTANTS ABN: 96 210 970 944 William Murray Huse 92 Wray Avenue FREMANTLE WA 6160 PO Bx 236 FREMANTLE WA 695 Email: accrdwa@accrdwa.cm.au Telephne: (08)
More informationMay Audit and Compliance Program Charter
May 2015 Audit and Cmpliance Prgram Charter TABLE OF CONTENTS PAGE 1.0 BACKGROUND 2 2.0 AUDIT AND COMPLIANCE ASSESSMENT 2 3.0 KEY LEGISLATIVE AUTHORITY AND POWERS 4 4.0 VALUES 5 5.0 STEPS IN THE ASSESSMENT
More informationEmployee Hardship Assistance Policy
Emplyee Hardship Assistance Plicy Functinal Area: Human Resurces Applies T: All Faculty and Staff Plicy Reference(s): N/A Number: TBD Date Issued: March 4, 2013 Page(s): 6 Respnsible Persn The Directr
More informationRenewing an Insurance Policy
AGENTS, BROKERS Renewing an Insurance Plicy This renewal prcedure is designed t help representatives respect their bligatins when renewing an insurance plicy. Essentially, these bligatins are spelled ut
More informationRecord Keeping and Notes in Records for Claims Adjusters
CLAIMS ADJUSTERS Recrd Keeping and Ntes in Recrds fr Claims Adjusters A claims adjuster s bligatin t keep prper recrds is related t the bligatin t act with cmpetence and prfessinal integrity, as required
More informationDetails of Rate, Fee and Other Cost Information
Details f Rate, Fee and Other Cst Infrmatin Accunt terms are nt guaranteed fr any perid f time. All terms, including fees and APRs fr new transactins, may change in accrdance with the Credit Card Agreement
More informationTERMS OF REFERENCE. Audit and Risk Committee (the "Committee") of Wilmcote Holdings Plc (the "Company")
References t the "Bard" shall mean the full Bard f Directrs. MEMBERSHIP - The Bard has reslved t establish a cmmittee f the Bard t be knwn as the Audit and Risk Cmmittee. - The Cmmittee shall cmprise at
More informationREFERENCE NUMBER: PFS.PDS.115. TITLE: Patient Billing and Collections CURRENT EFFECTIVE DATE: 01/01/2018. PAGE 1 of 8 SCOPE:
PAGE 1 f 8 SCOPE: This Patient Billing and Cllectins Plicy applies t all Presbyterian Healthcare Services (Presbyterian) hspital facilities, including inpatient, utpatient, hme health care services and
More informationJAUPT Appraisal Criteria Centre Application. November 2016
JAUPT Appraisal Criteria Centre Applicatin Nvember 2016 1. Intrductin T be able t assess centre applicatins fr the suitability f Peridic Training many factrs have t be taken int accunt and cnsidered befre
More informationTASSAL GROUP LIMITED ABN Procedures for the Oversight and Management of Material Business Risks. (Approved by the Board 28 May 2015)
Prcedures fr the Oversight and Management f Material Business Risks TASSAL GROUP LIMITED ABN 15 106 067 270 Prcedures fr the Oversight and Management f Material Business Risks (Apprved by the Bard 28 May
More informationENTERPRISE INCOME VERIFICATION (EIV) SECURITY/USER POLICY. Our Business is You. Purpose:
Our Business is Yu ENTERPRISE INCOME VERIFICATION (EIV) SECURITY/USER POLICY Purpse: The purpse f this plicy is t prvide instructin and infrmatin t staff, auditrs, cnsultants, cntractrs and tenants n the
More informationCopiague Chamber of Commerce
Cpiague Chamber f Cmmerce Est. 1955 BASIC REQUIREMENTS AND RESPONSIBILITIES FOR HOLDING OFFICE & POSITION DESCRIPTIONS 2016 Table f Cntents The basic requirements and respnsibilities fr hlding Office Psitin
More informationOverview of Statements of Investment Policies and Procedures (SIPP) Requirements
Financial Services Cmmissin f Ontari Cmmissin des services financiers de l Ontari SECTION: INDEX NO.: TITLE: APPROVED BY: PUBLISHED: Investment Guidance Ntes IGN-005 Overview f Statements f Investment
More informationSempra Energy Environmental, Health, Safety and Technology Committee Charter
Sempra Energy Envirnmental, Health, Safety and Technlgy Cmmittee Charter As adpted by the Bard f Directrs f Sempra Energy n September 5, 2000 and amended thrugh Nvember 9, 2015. I. Purpse The purpse f
More informationProducer Statements will be accepted only in accordance with this policy.
Prducer Statements Plicy This plicy has been prepared t ensure that Cuncil has clearly dcumented plicies and prcedures fr the request fr and acceptance f Prducer Statements in cnnectin with applicatins
More informationChapter 1. Introduction and Overview of Audit & Assurance
Assurance & Auditing Textbk Ntes Chapter 1 Intrductin and Overview f Audit & Assurance Audit prcess in Fcus 1.1 Auditing & Assurance Defined - An assurance is an engagement where an auditr r cnsultant
More information