Login

Fillable Printable Template Confidentiality Policy

Fillable Printable Template Confidentiality Policy

Template Confidentiality Policy

Template Confidentiality Policy

Template Policies and Procedures
1
TEMPLATE CONFIDENTIALITY POLICY
1.
General principles
General principlesGeneral principles
General principles
1.1.
XXXX recognises that XXXX employees, volunteers, trustees, secondees and
students use information about individuals and organisations during the
course of their work or activities. In most cases information will not be stated
as confidential and it will be necessary to use common sense and discretion
in deciding whether information is expected to be confidential. This policy
aims to give guidance but if in doubt, seek advice from XXXX.
1.2.
Colleagues are able to share information with their line manager where
necessary to discuss issues and seek advice.
1.3.
Colleagues should avoid exchanging personal information about individuals
with whom they have a professional relationship.
1.4.
It is not appropriate to discuss a person’s sexuality without their prior
consent.
1.5.
Colleagues should avoid talking about organisations or individuals in social
settings.
1.6.
Colleagues will not disclose to anyone, other than their line manager, any
information considered sensitive, personal, financial or private without the
knowledge or consent of the individual, or an officer, in the case of an
organisation.
1.7.
If it is necessary to discuss difficult situations with each other to gain a wider
perspective on how to approach a problem the organisation’s consent must
be sought before personal information enters into the discussion, unless it is
beyond doubt that the organisation would not object to this. Alternatively, a
Organisations use a vast array of internal policies and procedures, but the most appropriate
policies will always depend on the size and nature of the individual organisation. It is often
ineffective to copy model policies, rather than taking time to develop them individually. Policies
are effective if they are developed and reviewed on an ongoing basis with the involvement of
staff, and are tailored to suit the specific needs of an organisation and its activities. However,
some guidance and examples mean that you don’t have to start from scratch.
With this in mind NIDOS has provided a number of example generic policies which can be used
as guides
as guidesas guides
as guides when developing your own policies. We hope that these example policies may help to
save time in developing your own policies, but we stress that they are only examples and should
not simply be copied
not simply be copiednot simply be copied
not simply be copied.
Disclaimer
DisclaimerDisclaimer
Disclaimer
NIDOS accepts no responsibility for any third party loss or consequences arising from the use of these
example policies.
Template Policies and Procedures
Template Policies and ProceduresTemplate Policies and Procedures
Template Policies and Procedures
2
discussion may take place with names or identifying information remaining
confidential.
1.8.
Where there is a legal duty on XXXX to disclose information, the person to
whom the confidentiality is owed will be informed that disclosure has or will
be made.
2.
Why information is held
Why information is heldWhy information is held
Why information is held
2.1.
Most information held by XXXX relates to organisations or individuals which
support or fund them etc.
2.2.
Information is kept to enable XXXX colleagues to XXXX.
2.3.
XXXX has a role in putting people in touch with voluntary and community
organisations and keeps contact details which are passed on to any
enquirer, except where the group or organisation expressly requests that the
details remain confidential.
2.4.
Information about volunteers is given to known groups or statutory agencies
which request volunteers, but is not disclosed to anyone else.
2.5.
Information about students is given to the training organisation and the
college, but to no one else.
2.6.
Information about ethnicity and disability of users is kept for the purposes of
monitoring our equal opportunities policy and also for reporting back to
funders.
3.
Access to information
Access to informationAccess to information
Access to information
3.1.
Information is confidential to XXXX as an organisation and may be passed to
colleagues, line managers or trustees to ensure the best quality service for
users.
3.2. Where information is sensitive, i.e. it involves disputes or legal issues, it will
be confidential to the employee dealing with the case and their line
manager. Such information should be clearly labelled ‘Confidential’ and
should state the names of the colleagues entitled to access the information
and the name of the individual or group who may request access to the
information.
3.3.
Colleagues will not withhold information from their line manager unless it is
purely personal.
3.4.
Users may have sight of XXXX records held in their name or that of their
organisation. The request must be in writing to the Director giving 14 days’
notice and be signed by the individual, or in the case of an organisation’s
records, by the Chair or Executive Officer. Sensitive information as outlined
in paragraph 3.2 will only be made available to the person or organisation
named on the file.
Template Policies and Procedures
Template Policies and ProceduresTemplate Policies and Procedures
Template Policies and Procedures
3
3.5.
Employees may have sight of their personnel records by giving 14 days’
notice in writing to the Director.
3.6.
When photocopying or working on confidential documents, colleagues must
ensure they are not accidentally seen by others. This also applies to
information on computer screens.
4.
Storing information
Storing informationStoring information
Storing information
4.1.
General non-confidential information about organisations is kept in unlocked
filing cabinets with open access to all XXXX colleagues.
4.2.
Information about volunteers, students and other individuals will be kept in
filing cabinets by the colleague directly responsible. These colleagues must
ensure line managers know how to gain access.
4.3.
Employees’ personnel information will be kept in lockable filing cabinets by
line managers and will be accessible to the Director.
4.4.
Files or filing cabinet drawers bearing confidential information should be
labelled ‘confidential’.
4.5.
In an emergency situation, the Director may authorise access to files by
other people.
5.
Duty to disc
Duty to discDuty to disc
Duty to disclose information
lose informationlose information
lose information
5.1.
There is a legal duty to disclose some information including:
5.1.1.
Child abuse will be reported to the Social Services Department
5.1.2.
Drug trafficking, money laundering, acts of terrorism or treason will
be disclosed to the police.
5.2.
In addition if colleagues believe that an illegal act has taken place, or that a
user is at risk of harming themselves or others, they must report this to the
Director who will report it to the appropriate authorities.
5.3.
Users should be informed of this disclosure.
6.
6.6.
6.
Disclosures
DisclosuresDisclosures
Disclosures
6.1 When dealing with Disclosures and Disclosure information XXXX complies
fully with the CRBS Code of practice http://tinyurl.com/6mth8e.
6.2 Disclosure information is always kept separately from an applicant’s
personnel file in secure storage with access limited to those who are entitled
to see it as part of their duties. It is a criminal offence
criminal offencecriminal offence
criminal offence to pass this
information to anyone who is not entitled to receive it.
6.3 Documents will be kept for a year and then destroyed by secure means.
Photocopies will not be kept. However, XXXX may keep a record of the date
Template Policies and Procedures
Template Policies and ProceduresTemplate Policies and Procedures
Template Policies and Procedures
4
of issue of a Disclosure, the name of the subject, the type of Disclosure
requested, the position for which the Disclosure was requested, the unique
reference number of the Disclosure and the details of the recruitment
decision taken.
7.
7.7.
7.
Data Protection Act
Data Protection ActData Protection Act
Data Protection Act
7.1. Information about individuals, whether on computer or on paper, falls within
the scope of the Data Protection Act and must comply with the data
protection principles. These are that personal data must be:
Obtained and processed fairly and lawfully.
Held only for specified purposes.
Adequate, relevant and not excessive.
Accurate and up to date.
Not kept longer than necessary.
Processed in accordance with the Act.
Kept secure and protected.
Not transferred out of Europe.
8.
8.8.
8.
Breach of confidentiality
Breach of confidentialityBreach of confidentiality
Breach of confidentiality
8.1. Employees who are dissatisfied with the conduct or actions of other
colleagues or XXXX should raise this with their line manager using the
grievance procedure, if necessary, and not discuss their dissatisfaction
outside XXXX.
8.2. Colleagues accessing unauthorised files or breaching confidentially may face
disciplinary action. Ex-employees breaching confidentiality may face legal
action.
9.
9.9.
9.
Whistleblowing
WhistleblowingWhistleblowing
Whistleblowing
9.1. Where the Finance Officer has concerns about the use of XXXX funds, he or she
may refer directly to the Chair or Treasurer outside the usual grievance procedure.
Login to HandyPDF
Tips: Editig or filling the file you need via PC is much more easier!
By logging in, you indicate that you have read and agree our Terms and Privacy Policy.