Information Governance (IG) is the execution of management leadership (direction) and control (assurance that direction is followed properly) in order to ensure that information is managed across the enterprise in compliance with the legal and regulatory framework within which an organisation is operating. The complexity of the requirements and the associate risks of non-compliance will vary according to the types of information being collected and the regulatory regime of the industry for example, financial sector, health sector.
IFC’s information governance service is made up of proven methods and tools that enable us to pragmatically review and implement solutions to comply with a wide range of legal and regulatory requirements in a wide range of countries (legal jurisdictions) including compliance with the:
- UK Data Protection Act 1998 and incoming General Data Protection Regulation (GDPR)
- International requirements including the EU Privacy Directive and Electronic Marketing Directive
- Freedom of Information Act 2000 and codes of practice issued under Section 45 and 46 of the Act
- Access to information under the Environmental Information Regulations
- Application of International Security Standards ISO27001 and ISO27002 and compliance with HMG’s Information Security Policy
- NHS Information Governance Toolkit
- Application of Records Management Standard ISO15489
Our offerings are modular in nature allowing organisations to focus on one or more areas that need to be reviewed.