Data Protection Advice Service
A Tender Notice
by PLATFORM HOUSING LIMITED
- Source
- Find a Tender
- Type
- Contract (Goods)
- Duration
- 1 year
- Value
- £43K
- Sector
- TECHNOLOGY
- Published
- 05 Oct 2022
- Delivery
- To 04 Nov 2023 (est.)
- Deadline
- 09 Nov 2022 12:00
Concepts
Location
West Midlands England: WEST MIDLANDS (ENGLAND)
1 buyer
- Platform Housing Solihull
Description
The Group’s Information Governance Team oversees, investigates, and triages activities associated with data protection. The Team currently consists of a Head of Information Governance and Assurance and two Data and Information Security Officers. One of these Officer posts is currently vacant, and a structural review is being considered. A mature Information Governance Framework exists within the Group with relevant policies, processes, and procedures in place as well as a reporting framework on key activities to a Group Data Protection and Cyber Security Forum and to the Group Executive Risk Committee. The Information Governance Team aspires to continually improve its knowledge and application of the legislation both to ensure customer’s rights are fully met and that both service operations and development occur efficiently, effectively, and compliantly
Total Quantity or Scope
The Group’s Information Governance Team oversees, investigates, and triages activities associated with data protection. The Team currently consists of a Head of Information Governance and Assurance and two Data and Information Security Officers. One of these Officer posts is currently vacant, and a structural review is being considered. A mature Information Governance Framework exists within the Group with relevant policies, processes, and procedures in place as well as a reporting framework on key activities to a Group Data Protection and Cyber Security Forum and to the Group Executive Risk Committee. The Information Governance Team aspires to continually improve its knowledge and application of the legislation both to ensure customer’s rights are fully met and that both service operations and development occur efficiently, effectively, and compliantly. Cyber Security is dealt with by another Team in the Information Directorate although close working practices exist between the Teams. The Group is ISO27001 certified. With a fairly small team, activities prioritised tend to be reactive to events and therefore focus on data subject access requests, personal data incident investigations and advice on information sharing. Proactive activities including detailed data protection impact assessments, auditing, and understanding information assets and other processing activities, reviewing of contract clauses and drafting of data processing agreements do not always get the time and focus they may merit particularly where they may be classed as lower risk activities. The desire in the team is to free up time spent on Data Subject Access Requests, contract clause reviews and researching less routine data protection issues in order to focus on proactive, preventative activities with the business. Particular emphasis is to be placed on alignment with the Groups Enterprise Programme Management Office activities, enterprise architecture, data processing supply chain and procurement. To this end, we are looking to be able to collaborate with a partner organisation who would be able: 1)Assist in the compilation, de-duplication and redaction of data subject access request records when needed, 2)provide a data protection expert advice and support service, and 3)act as a critical friend advising on process and policy improvements. This procurement is initially for 12 months to understand and trial the costs incurred against the benefits outlined above. The SARs service will be reviewed after 12 months in terms of compliance with statutory deadlines, quality of Customer Copy SARs, the number and type of follow up queries received by customers against in-house comparators, the number of queries received from the ICO. In addition, staff time freed up to undertake proactive preventative actions will also be measured. Additional information: To respond to this opportunity please click here: https://www.delta-esourcing.com/respond/3C7Y97CZQC
Award Criteria
Quallity | 70 |
Cost | 30 |
CPV Codes
- 48610000 - Database systems
Indicators
- This is a one-off contract (no recurrence)
- Renewals are not available.
Other Information
** PREVIEW NOTICE, please check Find a Tender for full details. ** The contracting authority considers that this contract may be suitable for economic operators that are small or medium enterprises (SMEs). However, any selection of tenderers will be based solely on the criteria set out for the procurement. For more information about this opportunity, please visit the Delta eSourcing portal at: https://www.delta-esourcing.com/tenders/UK-UK-Solihull:-Database-systems./3C7Y97... To respond to this opportunity, please click here: https://www.delta-esourcing.com/respond/3C7Y97CZQC GO Reference: GO-2022105-PRO-21078765
Reference
- ocds-h6vhtk-037349
- FTS 028025-2022