3.2b Use this template to consider the effectiveness of the systems you have identified above.

What is/are the main reasons for having systems?

To ensure adherence to legislation and good practice, that confidential information is secure and correct records are kept.

Who is the information and data for?

The information is for staff, clients and the business.

Who owns the data and information?

The company owns the data

how do the systems in place meet legal and ethical requirements?

Confidential and personal information is secured and only accessible on a need-to-know basis.

reflect on the links to respect and privacy issues for the data and information in your systems

The online system only allows access on a need-to-know basis. Similarly, paper records are locked away and secured to ensure that only the relevant individuals can obtain access to them. This is covered by GDRP.