Skip to main content

Departmental Data Protection

Volume 469: debated on Monday 10 December 2007

To ask the Secretary of State for Innovation, Universities and Skills whether his Department's information technology and data management systems are BS7799 compliant. (168745)

The Department currently shares information technology and data management systems with the Department for Business Enterprise and Regulatory Reform and the Department for Children, Schools and Families.

The Department for Business, Enterprise and Regulatory Reform's Information Security Management System is not only compliant but has been independently certified to BS7799 since May 2002. In March 2007 certification was successfully achieved against the new ISO27001 standard. The certificate will be updated to reflect the name change to BERR at the next surveillance audit in 2008.

The Department for Children, Schools and Families systems work to the principles of the BS7799 standard.