Information Assurance Policy

Estyn has a duty to maintain the security of information it handles – this means protecting data from unauthorised access, ensuring its accuracy and integrity, and maintaining availability of the information to those who need it.

This policy is part of our framework of policies and procedures on information governance, and it applies to all employees and people working on our behalf. Staff and other people working for us must follow the rules, policies and guidelines we have developed. They must also understand their personal responsibilities when creating, sharing and storing information in relation to our work.