ALL Flashcards
What is an Asset and Risk Assessment Register
It’s a register what details the risks and vulnerabilities that is present to the information it holds, processes or has access to.
What is a Legal Register
The Legal Register records any applicable legislation detailed in section 7 of the Legal and Other Requirements Management Procedure.
What is a Other Requirements Register
The Other Requirements Register records any other requirements that result from any other commitments or contracts that the organisation is subject to, detailed in section 8 of the Legal and Other Requirements Management Procedure
What is the Environmental Risks Register
The Environmental Risks Register records all elements of the organisation’s activities, facilities or services that can interact with the environment
What is an Compliance Assessment
A Compliance Assessment is used to assess if we are successfully meeting the requirements of H&S, Infosec and Environmental. If there is a non compliance, an Improvement log has to be raised and should be reviewed at management meetings.
Where can responsibility of tasks be found?
Roles and Responsibility Register
What is the Communication and Consultation Procedure
This procedure details how to effectively communicate with Employees of Whoosh about topics such as control measures and procedures, legal responsibilities etc.
Who should be given the Communication and Consultation Procedure?
All staff and any sub-contractors upon their first arrival.
What is staff briefed on?
IMS, IMS Update, GDPR and Inductions.
Where can employee’s exercise their GDPR rights?
In the Personal Information Request Register
Where are changes documented?
As per the Change Control Procedure (IS)
Maintenance of all buildings, plants and equipment is taken in accordance to what document?
Information Security Policy (Environmental Security Policy section)
Where can the Approved Supplier Checklist be found?
In G-Drive
What type of information can be found is 2.0 Resource Management?
HR related activities, such as inductions, training, terminations, supplier approval forms.
What is the Access and Asset Review form?
It’s a form to complete to identify and confirm what a new employee should have access to. This document should also be used if any accesses or assets need to be reviewed for existing employees.
