2013 Crisis, Safety and Security Review. conducted for. Sheraton Haikou Resort
|
|
- Collin Nichols
- 6 years ago
- Views:
Transcription
1 ! 2013 Crisis, Safety and Security Review conducted for!!
2 2013 Crisis, Safety and Security Review conducted for Property ID. EmcorpGroup Risk Consultant Matthew H. Johnston Date/Time Review started 15/07/13 9:00 Property Address of Review 199 Bin Hai Road Haikou Hainan China Completed on 17/07/13 23:57
3 Director's Forward Herein contains the results and break down of the 2013 Starwood Crisis, Safety and Security Review (CSSR) process for your Property. You will also note a secondary report detailing our feedback in relation to the HIMS training and scenario presentation conducted during our visit. I would like to take this opportunity to thank you and your team for their valuable assistance during the Review process and for allowing our Risk Consultant access to the various areas of your Hotel operation. As before we will be utilizing the guidelines and standards from AS/NZS and ISO 31000:2009, that are embedded within our Review template in addition to Starwood Hotel Group s company standards and local legislation in each country. The review process for 2013 has been subject to some simple but significant changes. During the latter stages of 2012, Emcorp Group project team worked closely with your Starwood Security Champions to develop a more in-depth, accurate and robust Review template. This will afford Starwood a more holistic identification of the risks that you, your Associates, Guests and other Visitors to your Hotel may be exposed to. So by design the revised Review process will greatly enhance and build upon your existing Hotel risk management framework. Based on the original CSSR criteria the process now focuses on each specific point contained within the criteria. It seeks to not only highlight areas of potential risk including dormant risks that are present, but also identify a Hotel operation that either exceeds normal operations or conversely those that may have difficulties reaching acceptable levels of competencies and best practices. We hope the modified and updated CSSR process has been beneficial to you and your team and look forward to assisting you in the future. We are committed to this process and will continue to support and assist you in providing a pleasurable, safe and secure environment for Guests and Associates alike. You will receive further information from us regarding you access to the Emcorp Group web-portal to initiate any actionable items requiring your attention. Please accept this Review document on behalf of the Emcorp Group team and should you have any further inquiries please feel free to contact either the Risk Consultant or one of the Emcorp Group team. Richard Stevens Director Client Services
4 Table of Contents 2013 CRISIS, SAFETY AND SECURITY REVIEW 1 Director's Forward 2 Disclaimer 4 Privacy & Confidentiality 5 PROPERTY PROFILE 7 Owner details 7 Property Management 7 Account Billing 7 Property Specifics 7 [A] DOCUMENTATION 9 [A.1.] Emergency Crisis Management Plan Manuals 9 [A.2.] Threat Levels 9 [A.3.] Emergency Equipment 9 [A.4.] Stakeholder Liaison 9 [A.5.] Standard Operating Procedures (SOPs) 9 [A.6.] Incident, Patrol or Investigative Reporting 9 [A.7.] Documented Self Review 10 [A.8.] Dangerous Goods (DG) Identification and Management 10 [A.9.] Certifications 10 [B] TRAINING 11 [B.1.] Drills and Exercises 11 [B.2.] Rescue / Response 11 [B.3.] Cardiopulmonary Resuscitation (CPR) / First Aid 11 [B.4.] Automated Electronic Defribulator (AED) 11 [B.5.] Procedural Training 11 [B.6.] Children and Youth Care Responsibilities 11 [C] GUIDED REVIEW 12 [C.1.] Emergency Command Centre 12 [C.2.] CCTV Monitoring room 12 [C.3.] Duress Alarms 12 [C.4.] Security or Fire Control Office / Team 12 [C.5.] Reception / Front Office 12 [C.6.] Fire Evacuation routes 12 [C.7.] Operator 12
5 [C.8.] Elevator Emergency Response 12 [C.9.] Business Data Server room 12 [C.10.] Payment Card Industry (PCI) integrity 12 [C.11.] Heart of House Access points 13 [C.12.] Starwood ID cards / Passes 13 [C.13.] Security control of external areas 13 [C.14.] Concierge / Valet 13 [C.15.] Housekeeping 13 [C.16.] Laundry 13 [C.17.] Engineering 13 [C.18.] General Heart of House 13 [D] UNGUIDED REVIEW 14 [D.1.] Emergency Equipment 14 [D.2.] Heart of House access 14 [D.3.] Housekeeping / Room Service 14 [D.4.] Reception 15 [D.5.] Concierge / Doorman 15 [D.6.] Restaurants and Bars 15 [D.7.] Bodies of Water 15 [D.8.] Fitness Facility and Spa 15 [D.9.] Engineering / Contractors 15 [D.10.] Kitchens / Food and Beverage / Function Areas 16 [E] ASSOCIATE KNOWLEDGE VALIDATION 17 [E.1.] Security Department 17 [E.2.] Reception 17 [E.3.] Concierge 17 [E.4.] Emergency Calls 17 [E.5.] Bars / Restaurants / Shops 17 [E.6.] First Aid / CPR 17 REVIEW COMPLETION 18 Potential Best Practice 18 Any Guidance or Recommendations 18 Potential Risks outside of Review Scope 18 Debrief 18 Report completion 18 MEDIA 20
6 Disclaimer The information and opinions expressed in this report have been provided in good faith, based on information provided by the client and to the best of the author s knowledge at the time of writing. Accuracy of information provided by the client and/or their authorised representative/s cannot be guaranteed. While all care has been taken to prepare this document in accordance with current legislation and practice, the information provided herein does not constitute legal advice, which should be sought from a registered legal practitioner if required. The inspection was primarily non-invasive with no attempt made to remove, modify, or repair any fixture or fitting, nor to assess or test every part of the building and associated plant. This report may not list every conceivable, potential safety item at this premises but addresses issues identified as likely to have significant consequences. The extent of this assessment is based on the assumption that the premises was designed, approved, constructed, and certified in accordance with the relevant authority requirements of the day, and every effort has been made to maintain the premises in accordance with those requirements. Also, this report is confined to Risk Mitigation matters only and is not a structural engineering report. This report was compiled without prejudice and, in the belief that no pertinent information has been withheld; Emcorp Group has the right to review the report in light of such information. This report has been prepared by Emcorp Group for the client s sole internal use, and shall not be reproduced, copied or disseminated for any other purpose without written permission.
7 Privacy & Confidentiality Emergency Corporation Pty Ltd (Emcorp Group) is committed to respecting the privacy of its customers. The following policy discusses how personal information received by Emcorp Group will be dealt with. Emcorp Group is required by law to comply with the provisions of the Privacy Act 1988 (C th) and the national privacy principles referred to in that act. Emcorp Group may change the privacy policy from time to time to ensure that it s policies remain in accordance with the Privacy Act 1988 (C th) and the national privacy principles. When Emcorp Group May Collect Information Any information requested or collected by Emcorp Group, will be directly necessary for a particular function or activity carried out by Emcorp Group and for a lawful purpose. Individuals and organizations have the option of not identifying themselves when communicating with Emcorp Group, providing this is practicable. Emcorp Group will, where reasonable and practicable, only collect information about an individual or an organization directly from that individual or organization. Emcorp Group will ensure that any information collected is relevant to that purpose, is not excessive, and is accurate, up to date and complete, and that the collection of the information does not intrude on the personal affairs of the individual or organization. How Emcorp Group Will Use Information Emcorp Group will not use or disclose information:! without ensuring that the information is relevant, accurate, up to date, complete and not misleading;! for a purpose other than that for which it was collected without consent unless the use of the information for that other purpose is necessary to prevent or lessen a serious and imminent threat to the life or health of the individual to whom the information relates or of another person; or! which relates to an individual's ethnic or racial origin; political opinions; religious or philosophical beliefs; trade union membership; health or sexual activities. Right of Access and Corrections to Information At the request of an individual or organization, Emcorp Group will confirm whether it holds any information about that party and if so, the nature of the information, the purpose for which is held, and allow the individual or organization access to the information. If an individual or organization notifies Emcorp Group that information held about that party is incorrect, Emcorp Group will make appropriate amendments at the individual/organization s request. Storage, Security and Disposal of Information Emcorp Group will take all reasonable steps to prevent unauthorized use or disclosure of information held by it. Emcorp Group will also ensure that information is kept for no longer than is necessary, that the information is disposed of securely, that the information is protected against loss, unauthorized access, use, modification or disclosure.
8 Property Profile Question Response Details Owner details Please add details of the Owner / Representative / Company Property Management Please add details of the General Manager and other Managers involved in review GM / Managers 1 Name Position Subash Basrur General manager Phone number address Subash.basrur@sheraton.com (Optional) Insert copy of business card GM / Managers 2 Name Position Tania Rodrigues Operational Excellence Manager Phone number address Tania.rodrigues@sheraton.com (Optional) Insert copy of business card Account Billing Who is the billing Account Manager? Property Specifics What is the Property management status? General Manager Managed Date hotel opened? 15/12/07 Number of rooms? 321
9 Question Response Details Number of staff? 420 Occupancy at time of review (%)? 14 Number of CCTV cameras? 142 Number of security staff? 30 Number of floors? 5 Number of Function Rooms? 8 Number of personnel in Starwood controlled Offsite Staff / Associate accommodation? 381 Did the property have a Pre-Opening Crisis, Safety and Security assessment conducted? 2012 HACCP score? LRA score? Crisis, Safety and Security Review score? 94.5 Please add any relevant comments relating to last years reviews?
10 [A] Documentation Question Response Details [A.1.] Emergency Crisis Management Plan Manuals [A.2.] Threat Levels [A.2.2] What is the properties current Security Threat rating? [A.2.4] What is the properties current Terrorism Threat rating? Guarded Guarded [A.3.] Emergency Equipment [A.3.5] Is there a documented policy in place to prevent misuse of any phone recording function? [A.4.] Stakeholder Liaison [A.4.2] (NOT SCORDED) Please detail the process or extent of that liaison. For example, "Casual Adhoc Meetings". [A.4.3] (NOT SCORDED) Please identify if any records or minutes are kept of the meetings. [A.4.4] (NOT SCORDED) Please describe the detail of information shared, particularly relating to local crime trend data. Regular meetings are held with the police as there is a very close relationship between them and the hotel. Good records are kept, by the hotel including diary entries, briefing reports, and s from the Police department. Good local crime trends including general incidents that do not directly effect the hotel but may impact local community population. [A.5.] Standard Operating Procedures (SOPs) [A.6.] Incident, Patrol or Investigative Reporting [A.6.7] Is the Incident Register recorded in an electronic / soft copy format? [A.6.12] How many Investigations remain open? 0 [A.6.13] Please confirm Investigations are properly completed.
11 Question Response Details [A.6.15] (NOT SCORDED) What is the total amount of investigations recorded in the register? t known [A.7.] Documented Self Review [A.7.6] Has the property documented a security self audit at least one per quarter with current threat category recorded? [A.7.8] Are Daily Guest Room hard keys audits documented? self audit has been done as per the Starwood documentation. However on the island the hotels as a group have teamed up and visited with each other to conduct a full assessment using the contents of this review. This is a fantastic process but is focused on achieved scoring well annually in the review rather than as am internal checking mechanism to ensure the property is remaining compliant. [A.7.9] Are Daily Casual issue key audits documented? [A.8.] Dangerous Goods (DG) Identification and Management [A.9.] Certifications [A.9.1] (NOT SCORDED) Is the Property certified Tsunami prepared? [A.9.2] (NOT SCORDED) Is the Property certified Earthquake prepared?
12 [B] Training [B.1.] Drills and Exercises Question Response Details [B.1.2] Please provide date of Evacuation training. [B.1.6] Please provide date of Fire Drill training. [B.1.9] Please provide date of Tabletop Exercise. 29/05/13 29/05/13 10/07/13 [B.2.] Rescue / Response [B.2.2] Please provide date of ERT training. 16/06/13 [B.2.4] Please provide date of Elevator rescue training. 7/05/13 [B.3.] Cardiopulmonary Resuscitation (CPR) / First Aid [B.3.7] Are all Spa Attendants certified in CPR by an approved trainer? [B.4.] Automated Electronic Defribulator (AED) [B.5.] Procedural Training [B.5.2] Is the latest Security and Safety Training Package in place, as part of a Program according to Policy. (Schedule & Training records should be reviewed). [B.6.] Children and Youth Care Responsibilities [B.6.1] Are Crèche Staff / providers qualified in Child Care Services? [B.6.2] Are Police Criminal Record checks done on Staff / providers in Child Care Services?
13 [C] Guided Review Question Response Details [C.1.] Emergency Command Centre [C.2.] CCTV Monitoring room [C.3.] Duress Alarms [C.4.] Security or Fire Control Office / Team [C.4.9] Does the First Aid kit at the Security or Fire Control Office have the following equipment included as per SOP: [C.5.] Reception / Front Office [C.5.3] Does the First Aid kit at Reception or front office have the following equipment included: [C.5.10] Is there an AED at the Front Reception area of the property? [C.6.] Fire Evacuation routes [C.6.11] Are Guest floor exit doors equipped with one way panic push bars or lock on entry mechanisms? [C.7.] Operator [C.7.5] (NOT SCORDED) Can Operators record a phone conversation? [C.7.7] (NOT SCORDED) Is there Key Control Access in place for authorized entry into the Operator office? [C.8.] Elevator Emergency Response Guest Elevators Service Elevators [C.9.] Business Data Server room [C.10.] Payment Card Industry (PCI) integrity
14 Question Response Details [C.11.] Heart of House Access points [C.11.3] (NOT SCORDED) Is there a daily list of scheduled Contractors, Visitors or Vendors held at the relevant entrance point? [C.12.] Starwood ID cards / Passes [C.13.] Security control of external areas [C.14.] Concierge / Valet [C.14.1] If vehicle is Valet parked, has the vehicle been checked for damage and recorded on the Valet parking docket? [C.14.3] Is there a Daily Inventory Log of checked/stored luggage in place? [C.14.4] If luggage is kept at the Concierge/Bell desk is it physically secured? [C.15.] Housekeeping [C.16.] Laundry [C.17.] Engineering [C.17.5] Does the First Aid kit at the Engineering office have the following equipment included: [C.18.] General Heart of House [C.18.2] Does the Property display Tsunami Evacuation signage in strategic areas?
15 [D] Unguided Review Question Response Details [D.1.] Emergency Equipment [D.1.7] Are Fire Extinguishers, hoses and equipment in good condition with no indication of splitting? [D.1.] Add Breaches Breach 1 [D.1.8] Equipment Damaged? [D.1.] Please provide media to support Breach 2 [D.1.8] Equipment Damaged? [D.1.] Please provide media to support [D.1.9] Were any Fire Escapes found to be obstructed? [D.2.] Heart of House access [D.2.1] Is the Reviewer able to enter any Heart of House areas? Yes [D.2.] Add Breaches Breach 1 [D.2.2] Level of Breach? Full breach, Controls [D.2.] Please provide media to support [D.3.] Housekeeping / Room Service [D.3.3] Was the Reviewer able to enter a Guest room whilst it is being serviced by Housekeeping? Yes [D.3.] Add Breaches
16 Question Response Details Breach 1 [D.3.5] Did the Housekeeper require validation that the Reviewer had a Guest room key able to open the Guest room door? [D.3.6] Did the Housekeeper leave the room and notify Security Personnel immediately? [D.4.] Reception [D.5.] Concierge / Doorman [D.6.] Restaurants and Bars [D.6.1] Restaurants / Bars - If used or collected and it contains at minimum the Guest name and Room Number, is it secured in a manner making it inaccessible to unauthorized persons? [D.6.] Add Breaches Breach 1 [D.6.2] Unsecured information? [D.6.] Please provide media to support [D.7.] Bodies of Water [D.8.] Fitness Facility and Spa [D.8.4] Is Safety information for correct use of apparatus displayed on each piece of fitness equipment? [D.8.11] Is there an AED in the Fitness Facility at the property? [D.8.14] Does the First Aid kit at the Fitness Facility have the following equipment included: [D.9.] Engineering / Contractors
17 Question Response Details [D.10.] Kitchens / Food and Beverage / Function Areas [D.10.9] Are Function Rooms locked when there are no property Associates in attendance? (Including lunch breaks etc) [D.10.] Add Breaches Breach 1 [D.10.10] Level of Breach? Full breach, Controls [D.10.] Please provide media to support
18 [E] Associate Knowledge validation Question Response Details [E.1.] Security Department [E.2.] Reception [E.3.] Concierge [E.4.] Emergency Calls [E.5.] Bars / Restaurants / Shops [E.6.] First Aid / CPR
19 Review Completion Question Response Details Potential Best Practice Items of commendation Commendation 1 Please Highlight potential Best Practice Excellent grab bag in preparation for an event or incident. Please provide media to support Appendix 1 Appendix 2 Any Guidance or Recommendations Any Guidance or Recommendations? Continued support to develop Security managers transition to a Starwood property. Please provide media to support Potential Risks outside of Review Scope Areas of concern Debrief Property management Review comments Property management Training validation comments 2013 Crisis, Safety and Security overall score Areas of non compliance discussed and some suggestions given to assist with encouraging all staff to participate in ensuring security and safety. Training given for HIMS to an interested team with good participation from the team. Questions were answered well and I believe the system will be embraced and developed over the coming months Report completion
20 Question Response Details Summary comments A good score this year, in the face of a more detailed review. Tania Rodrigues deserves special mention for her involvement in the review. Without her determination to excel and effort to comply the score this year would not have been achieved. Any additional Media Date review completed 17/07/13 Signature of EmcorpGroup Risk Consultant MHJOHNSTON 17/07/13 23:57
21 Media Appendix 1 Appendix 2
version 1 / 96 R Green Stars Hotel Environmental Management System
Environmental Management Manual for Hotels in Hong Kong version 1 / 96 R Green Stars Hotel Environmental Management System 2002 Acknowledgements: This document is a revised version of the manual published
More informationGeneral Personal Data Protection Policy
General Personal Data Protection Policy Contents 1. Scope, Purpose and Users...4 2. Reference Documents...4 3. Definitions...5 4. Basic Principles Regarding Personal Data Processing...6 4.1 Lawfulness,
More informationSt Mark s Church of England Academy Data Protection Policy
St Mark s Church of England Academy Data Protection Policy 1 Contents Purpose:... Error! Bookmark not defined. Scope:... Error! Bookmark not defined. Procedure:... Error! Bookmark not defined. Definitions:...
More informationIntroduction Why is data protection important? How does it apply to volunteers? What volunteers need to do?...
Data Protection Guidance for Volunteers Last update 26/11/17 Contents Introduction... 2 1. Why is data protection important?... 2 2. How does it apply to volunteers?... 2 3. What volunteers need to do?...
More informationBreakthrough Data Protection Policy Approved by Lead Organisation: November 2017 Next Review Date: November 2018
Breakthrough Data Protection Policy Approved by Lead Organisation: November 2017 Next Review Date: November 2018 Introduction The Partner organisations within the Breakthrough Programme need to collect
More informationData Protection. Policy
Data Protection Policy Why do we need this policy? What does the policy apply to? Which parts of SQA are affected? SQA is committed to adopting best practice in protecting the personal information of all
More informationData Protection Policy
Data Protection Policy Name of Chair: Mr David Mann Name of Headteacher: Mrs Eileen Bissell Name of person Responsible: Mrs Eileen Bissell Adopted and Agreed on: October 2015 Date of Review: October 2018
More informationData Protection Policy
Reference: Date Approved: April 2015 Approving Body: Board of Trustees Implementation Date: August 2015 Supersedes: 2.0 Stakeholder groups Governance Committee, Board of Trustees consulted: Target Audience:
More informationXerox Supplier Security Requirements
Xerox Supplier Security Requirements Suppliers who are involved in the manufacture, storage, and transportation of Xerox products ( Suppliers ) for Xerox Corporation and / or its subsidiaries under Xerox
More informationIQ Data Protection Policy
IQ Data Protection Policy Statement of purpose IQ Ltd is registered on the Data Protection register as a statutory requirement for organisations that hold personal data. Registration was first completed
More informationHuman Resources Directorate
Name of Policy Employee Records Privacy Policy Description of Policy New Policy Revision Description of Revision Human Resources Directorate Policy and Revision Number Original Effective Date Review Due
More informationDATA PROTECTION POLICY
1. Introduction This policy is intended to provide information about how the School will use (or process ) personal data about individuals including: Current, past and prospective pupils; Parents, carers
More informationData Protection Policy
THE CIPPENHAM SCHOOLS TRUST Data Protection Policy *Date for revision: Summer Term 2018 Responsibility for policy: Responsibility for operational: Trustees Trustees Reviewed by Directors: *subject to any
More informationData Protection Policy
Data Protection Policy StCH Data Protection Policy - POL 53 vs1 - July 2016 1 Document Control Table Document Title: Data Protection Policy Document Ref: POL 53 Author (name and job title): Karen Anderson,
More informationCORPORATE PROCUREMENT UNIT SITE & SECURITY PROCEDURES BOSTON SPA VERSION 7 APR09
SITE PROCEDURES BSPA VERSION 7 PAGE 1 OF 12 CONTENTS PAGE 2. GENERAL INFORMATION 3 3. ACCESS 3 4. SECURITY 4 5. VEHICLE PARKING 5 6. PERMITS TO WORK 5 7. DELIVERY, UNLOADING AND STORAGE 5 8. HOURS OF WORK
More informationForeign Manufacturer Eligibility Requirements
Foreign Manufacturer Eligibility Requirements (04/07/2008) To be eligible for C-TPAT, the Foreign Manufacturer must meet the following eligibility requirements: 1. Be an active Manufacturer incorporated
More informationHumber Information Sharing Charter
External Ref: HIG 01 Review date November 2016 Version No. V07 Internal Ref: NELC 16.60.01 Humber Information Sharing Charter This Charter may be an uncontrolled copy, please check the source of this document
More informationPREPARING YOUR ORGANISATION FOR THE GENERAL DATA PROTECTION REGULATION YOUR READINESS CHECKLIST DATA PROTECTION COMMISSIONER
PREPARING YOUR ORGANISATION FOR THE GENERAL DATA PROTECTION REGULATION YOUR READINESS CHECKLIST DATA PROTECTION COMMISSIONER 1 What will the GDPR mean for your business/organisation? On the 25 th May 2018,
More informationRetail Food Establishment. Self-Assessment Checklist. for. Food Defense
Retail Food Establishment Self-Assessment Checklist for Food Defense Ohio Department of Agriculture Division of Food Safety September 2005 Industry Self-Assessment Checklist for Food Defense On January
More informationSecurity Procedure - Participation / Certification in Foreign Customs Administrations Supply Chain Security Programs
Customs-Trade Partnership Against Terrorism (C-TPAT) Minimum-Security Criteria Importers Importers must conduct a comprehensive assessment of their international supply chains, based upon the following
More informationHFM Asset Management Contractor Induction Queens Riverside Apartments
HFM Asset Management Contractor Induction Queens Riverside Apartments Contents Purpose About HFM Asset Management HFM Asset Management s Responsibilities Contractors Responsibilities Commencing Work Working
More informationEmployee Personal Protection Safety Guidance Document
Employee Personal Protection Safety Guidance Document Lead Directorate and Service: Corporate Resources - Human Resources, Safety Services Effective Date: June 2014 Contact Officer/Number Garry Smith /
More informationFood Defense Supplier Guidelines
Food Defense Supplier Guidelines Revised: May 2015 Table of Contents Introduction 3 1. Program administration 3 a. Plan management 3 b. Roles and responsibilities 3 c. Reporting procedures 3 d. Self-assessments
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY APRIL 2018 Attendance Policy and Procedures (Pupils) (P3/Policies) Updated January 2018 Page 1 of 11 Title Summary Purpose Operational Date April 2018 Next Review Date April 2019
More informationRegulates the way data controllers process personal data
GUIDANCE NOTE ON THE DATA PROTECTION ACT 1998 This guidance note gives an overview of how the Data Protection Act 1998 (the Act ) applies to clubs (including class associations) and recognised training
More informationHospitality team member apprenticeship standard
A hospitality team member can work in a range of establishments, for example bars, restaurants, cafés, conference centres, banqueting venues, hotels or contract caterers. This is a very varied occupation
More informationWill Your Company Pass a Privacy Audit?
Will Your Company Pass a Privacy Audit? by Tammi K. Franke The Issue - Companies that collect personal information are under increasing scrutiny by both consumers and governments in the United States and
More informationGeneral Optical Council. Data Protection Policy
General Optical Council Data Protection Policy Authors: Lisa Sparkes Version: 1.2 Status: Live Date: September 2013 Review Date: September 2014 Location: Internet / Intranet Document History Version Date
More informationData Protection/ Information Security Policy
Data Protection/ Information Security Policy Date Policy Reviewed 27 th April 2016 Date Passed to Governors: 27 th April 2016 Approved by Governors: 7 th June 2016 Date of Next Review: June 2018 Data Protection
More informationPERSONAL DATA SECURITY GUIDANCE FOR MICROENTERPRISES UNDER THE GDPR
PERSONAL DATA SECURITY GUIDANCE FOR MICROENTERPRISES UNDER THE GDPR The General Data Protection Regulation ( the GDPR ) significantly increases the obligations and responsibilities of organisations and
More informationBUSINESS CONTINUITY MANAGEMENT
BUSINESS CONTINUITY MANAGEMENT RCG020-V1-01/2017 Page 1 2017 Royal & Sun Alliance Insurance plc Contents Introduction... 3 Business Continuity Management... 3 Getting started... 3 Business Impact Analysis...
More informationData protection (GDPR) policy
Data protection (GDPR) policy January 2018 Version: 1.0 NHS fraud. Spot it. Report it. Together we stop it. Version control Version Name Date Comment 1.0 Trevor Duplessis 22/01/18 Review due Dec 2018 OFFICIAL
More informationPlease complete the questionnaire and fax it to
Partners in Protection / C-TPAT Supply Chain Security Questionnaire Dear: Supply Trade Partner As you are aware there have been several changes in the transportation industry over the past few years. One
More informationMinimum-Security Criteria for C-TPAT Foreign Manufacturers
Minimum-Security Criteria for C-TPAT Foreign Manufacturers These minimum security criteria are fundamentally designed to be the building blocks for foreign manufacturers to institute effective security
More informationRail Carrier Minimum-Security Criteria
Rail Carrier Minimum-Security Criteria (08/28/2006) Rail carriers must conduct a comprehensive assessment of their security practices based upon the following C-TPAT minimum-security criteria. Recognizing
More informationData Privacy Policy for Employees and Employee Candidates in the European Union
Data Privacy Policy for Employees and Employee Candidates in the European Union This Data Privacy Policy is effective as of February 1, 2014 1. Data Privacy Policy Overview 1.1 Under Armour, Inc. (the
More informationOpal Privacy Policy Opal Electronic Ticketing System 21 January 2018 A Final
Opal Electronic Ticketing System 21 January 2018 A4426236 Final Contents 1 Background... 4 1.1 The Opal Ticketing System... 4 1.2 Channels for acquiring Opal cards... 4 1.3 TfNSW... 4 2 Scope of Policy...
More informationPreparing for Ontario s New Workplace Violence and Harassment Legislation
Emond Harnden Breakfast Seminar Preparing for Ontario s New Workplace Violence and Harassment Legislation Thursday, January 28, 2010 Colleen Dunlop Kecia Podetz www.emondharnden.com 1 Session Overview
More informationEurobitume UK. Site Inspection for Delivery of Bitumen
Eurobitume UK Site Inspection for Delivery of Bitumen June 2015 To be used in conjunction with the UK edition of the Eurobitume Guide to Safe Delivery of Bitumen Introduction and Scope This site inspection
More informationANNEX 2 Security Management Plan
ANNEX 2 Page 1 of 24 The following pages define our draft security management plan (a complete and up to date shall be submitted to The Authority within 20 days of contract award as per Schedule 2.4, para
More informationData protection. The employment practices code
Data protection The employment practices code Contents 3 Contents About the code 4 Managing data protection 11 Good practice recommendations 11 Part 1: Recruitment and selection 14 About Part 1 of the
More informationCPP20511 Certificate II in Fire Protection Inspection and Testing
CPP20511 Certificate II in Fire Protection Inspection and Testing WORKPLACE PROJECT ASSESSMENT Workplace Assessment for: CPP20511 Certificate II in Fire Protection Inspection and Testing Student Name:
More informationHEALTH & SAFETY POLICY
Deeds not words - Be the best you can be HEALTH & SAFETY POLICY Updated: Spring 2018 Approved by Governors Resource Management Committee: 13 February 2018 NEXT REVIEW 2020 WHITLEY ACADEMY HEALTH AND SAFETY
More informationUK Research and Innovation (UKRI) Data Protection Policy
UK Research and Innovation (UKRI) Data Protection Policy Document Information Revision History Version Comment Date By 0.1 Draft Policy created July 2017 DH 0.2 Revision post review by information manager
More informationWork Placement Handbook for Graduate Diploma in New Zealand Immigration Advice
Work Placement Handbook for Graduate Diploma in New Zealand Immigration Advice For Students and Work Placement Mentors Adapted with permission from material supplied by Eastern Institute of Technology
More informationCompliance with South African POPI Acts
Compliance with South African POPI Acts www.tdw.co.za Ebook Developed by Virginia Hendricks THE POPI ACT Ensuring that your organisation is abiding by both your own industry regulations and government
More informationWHS Management Plans
WHS Management Plans Disclaimer This Guide provides general information about the obligations of persons conducting a business or undertaking and/or persons in control of premises and workers under the
More informationPrivacy Policy MONAT GLOBAL
MONAT GLOBAL Monat Global (referred to herein as Monat Global, our, us or we ) is committed to respecting the privacy rights of those visiting our websites, including our Market Partners Replicated Websites
More informationGDPR: Is it just another strict regulation or a great opportunity for operational excellence?
GDPR: Is it just another strict regulation or a great opportunity for operational excellence? Xenofon Liapakis General manager CIO & Services of Interamerican group Chairman of Hellenic CIO forum November
More informationData Protection Policy & Procedures
Data Protection Policy & Procedures Scope In this document, the terms we, us, our and/or Clear Sky refer to Clear Sky Children s Charity. The term you and/or your refer to all employees of Clear Sky, who
More informationGuidance for Airport Operators Designating Known Suppliers of Airport Supplies
Aviation Security Guidance for Airport Operators Designating Known Suppliers of Airport Supplies CAP 1260 Published by the Civil Aviation Authority 2015 Civil Aviation Authority Aviation House Gatwick
More informationPolicy Work Health and Safety (WHS) RCPA Introduction WHS legislation
Policy Subject: Work Health and Safety (WHS) Approval Date: July 2011, December 2014 Review Date: July 2018 Review By: Board of Directors Number: 1/2011 The Royal College of Pathologists of Australasia
More informationNEW EMPLOYEE SAFETY ORIENTATION
NEW EMPLOYEE SAFETY ORIENTATION Table of Contents SECTION 1. TRAINING PROGRAM INTRODUCTION..................3 Training Objectives...........................................3 Rationale for Training.........................................4
More informationC-TPAT Minimum Security Requirements Importers
Customs and Border Protection, U.S. Department of Homeland Security C-TPAT Minimum Security Requirements Importers Released March, 2005 Prepared by Prep4Audit, LLC Version 2: August, 2014 www.prep4audit.com
More informationWHISTLE BLOWING POLICY
WHISTLE BLOWING POLICY Introduction The Tandridge Learning Trust is committed to the highest possible standards of honesty, openness, probity and accountability. It seeks to conduct its affairs in a responsible
More informationTruckSafe Operator Business Rules and Code of Conduct
Operator Business Rules and Code of Conduct Contents 1.0 Business Rules and Code of Conduct 3 2.0 Decision Making Bodies 4-6 3.0 Purpose 6 4.0 How the Rules will be amended 6 5.0 Introduction 6 6.0 Entry
More informationLone Working Policy Reference DP113
Responsible Person: Business Director Committee: Pupil, Parent & Community Last Review: November 2017 Next Review: November 2020 The Governing Board of Hazel Grove High School recognises its obligations
More informationPUBLIC WIFI FROM EE SOLUTION TERMS
1. Interpretation 1.1 The Public WiFi from EE Solution (referred to in these Solution Terms as "Public WiFi" or the "Solution") is provided in accordance with the Customer s Agreement with EE. 1.2 Solution
More informationGDPR readiness for start-ups, technology businesses and professional practices Martin Cassey
www.nascenta.com GDPR readiness for start-ups, technology businesses and professional practices Martin Cassey Introduction GDPR Key Points GDPR/DPA Differences Start Up, Tech Business Professional Practice?
More informationData Protection Strategy Version 1.0
Data Protection Strategy Version 1.0 Contents 1. Introduction... 4 1.1. Purpose... 4 1.2. The OpenLV Project... 4 1.3. Definition of Personal Data... 6 1.4. The Data Controller... 6 1.5. Document Structure...
More informationStaff Whistleblowing Policy
Staff Whistleblowing Policy Policy: Whistleblowing Effective Date: November 2014 Revision Number : 4.0 Revised: January 2017 Reviewable: As required Author: Educate HR/Business Manager Revision History
More informationCORPORATE PROCUREMENT UNIT SITE & SECURITY PROCEDURES COLINDALE, MICAWBER STREET & WOOLWICH VERSION 9 APR09
SITE PROCEDURES LONDON OTHER SITES VERSION 9 PAGE 1 OF 13 CONTENTS PAGE...1 2. GENERAL INFORMATION 3 3. ACCESS 4 4. SECURITY 4 5. VEHICLE PARKING 6 6. DELIVERY, UNLOADING AND STORAGE 6 7. HOURS OF WORK
More informationBuilding Security Worldwide. Enterprise Security Management System
Building Security Worldwide Enterprise Security Management System Dynamic Mapping Access Control Enterprise Security Management System Bringing together different aspects of security management can be
More informationInvitation to Tender. External Audit Services. July 2015
External Audit Services July Contents 1. Important notices... 3 1.1. Confidentiality... 3 1.2. Accuracy of information and liability of SLH... 3 1.3. Canvassing... 4 1.4. Non-collusion... 4 1.5. Copyright...
More informationFOOD DEFENCE SELF-ASSESSMENT CHECKLIST GRAIN HANDLING FACILITIES
FOOD DEFENCE SELF-ASSESSMENT CHECKLIST GRAIN HANDLING FACILITIES Copy No. Uncontrolled Canadian Grain Commission Process Verification and Accreditation Office Industry Services 900-303 Main Street Winnipeg,
More informationTEMPLATE FOR WORKPLACE VIOLENCE PREVENTION POLICY A. POLICY STATEMENT
TEMPLATE FOR WORKPLACE VIOLENCE PREVENTION POLICY A. POLICY STATEMENT [Organization name] ( Company ) is committed to providing a safe and healthy workplace free from actual, attempted or threatened violence.
More informationGROUP DATA PROTECTION POLICY
GROUP DATA PROTECTION POLICY Conducting business the right way Safeguarding our customer and employee personal data Version 1 [August 2016] CONDUCTING BUSINESS THE RIGHT WAY Our Values, Doing the Right
More informationImporters: C-TPAT Minimum Security Requirements
Customs and Border Protection, U.S. Department of Homeland Security C-TPAT Minimum Security Requirements Importers Released March, 2005 Restatement and Document Preparation by Prep4Audit, LLC 1 of 16 Suggested
More informationSafety Statement Including Risk Assessment
Safety Statement Including Risk Assessment Health and Safety Authority 6th March 2012 Health & Safety Policy I / We of am / are committed to working in accordance with the provisions of the Safety, Health
More informationLONE WORKER POLICY. Version: 3.0. Joint Policy Assurance Group. Date ratified: April Name of responsible committee/individual: Audit Committee
LONE WORKER POLICY Version: 3.0 Ratified by: Joint Policy Assurance Group Date ratified: April 2018 Name of Director Sponsor: Name of originator/author: Name of responsible committee/individual: Chief
More informationA Complete Dictionary of Hotel Job Descriptions
RENARD INTERNATIONAL HOSPITALITY SEARCH CONSULTANTS A Complete Dictionary of Hotel Job Descriptions GENERAL MANAGER Responsible for the successful day-to-day operations of the hotel and ensuring bottom-line
More informationRECORDS MANAGEMENT POLICY AND PROCEDURES
Purpose This policy is designed to ensure that CAC maintains a systematic, compliant approach to effective management of all records. The policy affirms CAC s commitment in compliance with the standards
More informationGwybodaeth Dan Reolaeth. Gwynedd Council DATA PROTECTION POLICY FINAL 2.0. September Information Management Service. Approved
Gwybodaeth Dan Reolaeth Gwynedd Council DATA PROTECTION POLICY FINAL 2.0 September 2015 Information Management Service 1. Introduction The Council makes considerable use of personal information in all
More informationFacilities Controller Job Description
Job Title: Employer: Location: Responsible to: Responsible for: Facilities Controller Torus 62 Ltd St Helens and Warrington Compliance & Assurance Manager (Facilities and Energy) Operation and coordination
More informationLeeds Interagency Protocol for Sharing Information
Leeds Interagency Protocol for Sharing Information The Protocol An inter-agency initiative to provide a framework for sharing personal information about service users between health and social care organisations
More informationFACILITIES SERVICES UNATTENDED BAG POLICY
FACILITIES SERVICES UNATTENDED BAG POLICY Document Title: Unattended Bags and Items on the LPMA QS Premises Version No: 001 Page 1 of 10 Facilities Services UNATTENDED BAGS AND ITEMS ON THE LPMA QUEENS
More informationDisclosure & Barring Service (DBS) Check Policy
Disclosure & Barring Service (DBS) Check Policy Version: Final Author: HR Manager Date Issued: December 16 Date Approved by SMT: January 17 Impact Assessment Completed Yes Date of Next Review: January
More informationLV Connect & Manage Data Protection Strategy
LV Connect & Manage Data Protection Strategy Report Title : Data Protection Strategy Report Status : FINAL Project Ref : NIA_WPD_014 Date : 15.06.2016 Document Control Name Date Prepared by: Samuel Jupe
More informationGeneral Data Privacy Regulation: It s Coming Are You Ready?
General Data Privacy Regulation: It s Coming Are You Ready? Presenters Tristan North Worldwide ERC Government Affairs Adviser, Moderator William R. Tehan General Counsel, Graebel Companies, Inc. Hank A.
More informationDeclarations. Director s Guidelines for the CDEM Sector (DGL13/12) Resilient New Zealand Aotearoa Manahau
Declarations Director s Guidelines for the CDEM Sector (DGL13/12) Resilient New Zealand Aotearoa Manahau Declarations Director s Guidelines for the CDEM Sector (DGL13/12) March 2012 ISBN 978-0-478-35560-4
More informationInformation Governance Policy and Management Framework
Putting Barnsley People First Information Governance Policy and Management Framework Version: 2.0 Approved By: Governing Body Date Approved: February 2014 Name of originator / author: Richard Walker Name
More informationINVITATION TO TENDER TO SUPPORT ORGANISATIONAL CHANGE AND TRANSFER OF UNDERTAKINGS OF THE CHESHIRE AND WARRINGTON GROWTH HUB
INVITATION TO TENDER TO SUPPORT ORGANISATIONAL CHANGE AND TRANSFER OF UNDERTAKINGS OF THE CHESHIRE AND WARRINGTON GROWTH HUB 1.1 BACKGROUND 1. The original funding provided by the Government to operate
More informationCOVER SHEET. Title: Equal Opportunities Policy Ratified by Policy Committee: Yes / Publication Date: July 2007 Review due: July 2008
Policy Code : BHSC-MPH- Equal Opportunities-2007:1 COVER SHEET Title: Equal Opportunities Policy Ratified by Policy Committee: Yes / Ownership: Belfast Health and Social Care Trust Publication Date: July
More informationData Protection Act Policy And Operational Procedures For the Trust, Its Academies, And Essa Nursery
Data Protection Act Policy And Operational Procedures For the Trust, Its Academies, And Essa Nursery Date approved by the Board of Directors: 7 July 2017 Date adopted by Essa Academy Local Governing Body:
More informationCANDIDATE DATA PROTECTION STANDARDS
CANDIDATE DATA PROTECTION STANDARDS I. OBJECTIVE The aim of these Candidate Data Protection Standards ( Standards ) is to provide adequate and consistent safeguards for the handling of candidate data by
More informationDATA PROTECTION POLICY
LEEDS BECKETT U NIVERSI T Y DATA PROTECTION POLICY 1. INTRODUCTION 1.1 This policy document explains the framework through which the University ensures compliance with the Data Protection Act 1998 (DPA).
More informationNORTH WASCO COUNTY SCHOOL DISTRICT 21
NORTH WASCO COUNTY SCHOOL DISTRICT 21 HUMAN RESOURCES DEPARTMENT 3632 West 10 th Street The Dalles, Oregon 97058 (541) 506-3420 or online at www.nwasco.k12.or.us of Application: Position applied for: Contact
More informationCity of Victoria - Privacy Impact Assessment
Why do I need to do a PIA? Section 69(5.3) of the Freedom of Information and Protection of Privacy Act (FOIPPA) requires the head of a public body to conduct a privacy impact assessment (PIA) in accordance
More informationSupplier Security Directives
Page 1 (8) Supplier Directives 1 Description This document (the Directives ) describes the security requirements applicable to Suppliers (as defined below) and other identified business partners to Telia
More informationINJURY AND ILLNESS PREVENTION PROGRAM. Adopted June 25, 1991 by Board Resolution 91-95
INJURY AND ILLNESS PREVENTION PROGRAM Adopted June 25, 1991 by Board Resolution 91-95 Latest Annual Review/Revision December, 2012 TABLE OF CONTENTS 1.0 Introduction... 1 2.0 Definitions... 1 3.0 Policy...
More informationInformation Governance Policy
Information Governance Policy Version: 4.0 Ratified by: NHS Bury Clinical Commissioning Group Information Governance Operational Group Date ratified: 19 th September 2017 Name of originator /author (s):
More informationProcedure: Sasol Supplier code Of Ethics
Procedure: Sasol Supplier code Of Ethics >Document number< Revision: 01 SAX-10029304 Purpose This Procedure is intended to govern the Conduct of Sasol and all of its subsidiaries, sub-contractors, consultants,
More informationDEVELOPING A FOOD DEFENSE PLAN A GUIDE
DEPARTMENT OF AGRICULTURE AND CONSUMER SERVICES EXHIBIT: X BUREAU OF FOOD DISTRIBUTION EFFECTIVE: 407 SOUTH CALHOUN STREET, M-39, 2 ND FLOOR REVISED: September 1, 2012 TALLAHASSEE, FLORIDA 32399-0800 PAGE
More informationElections Ontario Privacy Policy
Elections Ontario Privacy Policy OFFICE OF THE CHIEF ELECTORAL OFFICER ELECTIONS ONTARIO November 2012 TABLE OF CONTENTS Section 1: Introduction... 3 Section 2: Definitions... 4 Section 3: Scope... 5 Section
More informationKey Elements Procedure 6 Corporate Social Responsibility
Corporate Social Responsibility Key Elements Procedure 6 Corporate Social Responsibility LIST OF CONTENTS 1 Introduction... page 1 2 Volvo Group Code of Conduct.... 2 3 Requirements for Volvo Group suppliers
More informationWHISTLEBLOWING POLICY FOR STAFF
WHISTLEBLOWING POLICY FOR STAFF 2016-2017 Purpose & overview The school is committed to maintaining a culture of openness, accountability and integrity. We seek to ensure that employees feel secure in
More informationINSERT TITLE AND BRANDING Dr A Gill s signature and front cover to be placed on policy when received from Communications. (Policy fully ratified)
Disciplinary Policy INSERT TITLE AND BRANDING Dr A Gill s signature and front cover to be placed on policy when received from Communications. (Policy fully ratified) Consultation Staff Forum August 2014
More informationSyntel Human Resources Privacy Statement
Syntel Human Resources Privacy Statement August 24, 2016 Privacy Statement highlights: Syntel is committed to protecting your privacy. This Privacy Statement ("Statement") addresses prospective, current,
More informationData Protection Audit Self-assessment toolkit
Data Protection Audit Self-assessment toolkit online preferences security passport details emergency contact details blood group email account number accuracy CCTV images tax records rights payroll number
More informationThe (Scheme) Actuary as a Data Controller
The (Scheme) Actuary as a Data Controller Keith Webster and Ian Stevens Partners, CMS Cameron McKenna LLP June 2014 Discussion Areas New IFOA guidance Data Protection Act refresher Compliance obligations
More information