Information Compliance Policies
University Information Compliance Policies and procedures can be found below. Please ensure that you have read and understood these polices.
For any queries or questions relating to these polices please contact imps@reading.ac.uk (for those managed by the IMPS team) or it@reading.ac.uk (for those managed by Digital Technology Services (DTS))
IMPS are the point of contact for the following policies:
Data Protection Policy (PDF-160KB)
For all staff, students and others who may process personal data on behalf of the University to observe to ensure that they are in accordance with the Data Protection Act 2018.
IT Equipment Disposal Policy (PDF-181KB)
For all staff, students and anyone who uses IT equipment.
Information Security Policy (PDF-200KB)
For all staff, students and others who process information, particularly sensitive information, on behalf of the University to observe in order that all information they use is handled appropriately. It has a number of sub-policies:
For anyone who processes sensitive information off campus or on external networks on behalf of the University.
For anyone using a personally owned device for work purposes.
For anyone that handles University information.
For reporting suspected or known compromises of University Data
To be read in conjunction with:
Information Security Incident Response Procedures (PDF 354KB)
Information Security Incident Reporting Form (Word 1.1MB)
Staff in the IMPS office are available for guidance so please contact us if you require further information or advice regarding aspects of information compliance.
Freedom of Information and Environmental Information Regulations Policy (PDF-121KB)
For all staff and members of the University, to ensure compliance with the "access to information regimes", Freedom of Information Act (FOIA) 2000 and Environmental Information Regulations 2004 (EIRs).
For members of staff, students and others who are working for, or on behalf of, the University to give guidance on the lawful use or copying of third party materials.
Records Management Policy (PDF-131KB)
For all staff, including any third parties conducting business on behalf of the University, to observe when managing University records.
.
DTS are the point of contact for the following policies:
For all users of the Information Technology (IT) facilities provided by the University, connected to the University's network or used on the University's premises.
For anyone who uses or accesses University systems or information remotely to ensure that they work in accordance with the University's information compliance policies
For anyone who processes information on behalf of the University.
For anyone who uses or accesses University systems or information remotely to ensure that they work in accordance with the University's information compliance policies
For anyone who uses or accesses University systems or information to ensure that they work in accordance with the University's information compliance policies
For all staff and students involved in the specification, installation, use or maintenance of software used on University of Reading IT resources.
This policy applies to anyone using the Communications Networks under the control of the University of Reading.
For IT staff involved in systems operations.
This is for IT staff involved in software management.
This is for IT staff involved in systems management.
For IT staff involved in systems planning.
For any staff that have been assigned responsibility for the installation and maintenance of software used on University of Reading IT resources, to ensure they work in accordance with the University's patching policies.
Contact IMPS
- Email:
imps@reading.ac.uk - Telephone: +44 (0) 118 378 8981
Report an
Find out if you need to do a DPIA here: