Skip to main content

Departmental Data Protection

Volume 486: debated on Thursday 22 January 2009

To ask the Secretary of State for Environment, Food and Rural Affairs what percentage of contractors and suppliers to (a) his Department and (b) its agencies has reported compliance with the Government's security standards following publication of the report, Data Handling Procedures in Government, and the accompanying document, Cross-departmental Actions: Mandatory Minimum Action, on 25 June 2008. (245322)

The information is not available in the form requested. Since 1 July 2008 the DEFRA delivery network has been using the standard OGC security clauses for all new contracts and has also checked the compliance of its strategic IT partner with all the mandatory requirements of the Data Handling Review. In addition we have asked all information asset owners, responsible for assets containing personal protected information across the DEFRA network, to seek assurances from any other contractors or suppliers handling information on their behalf. Assurances have been received from all bar one of the owners in core DEFRA, and in respect of all executive agencies, except the Rural Payments Agency. In both cases the process of confirming assurances is under way but not yet complete.