It is important to ensure that the organisation’s assets, premises, equipment, records and other assets including staff are protected by physical security measures.
A risk assessment of physical security of the premises has been carried out and staff members have been informed of steps to take in the event of unauthorised access.
A risk assessment has been undertaken to identify areas of the premises that are at risk of unauthorised access. This covers the premises as a whole, and takes into account legitimate entry/exit points, areas where forced entry is possible and any unstaffed parts of the premises.
There is a reporting process and safety measures in place for staff to follow in the event of unauthorised access.
Improvements identified by the risk assessment are being made to secure the premises, equipment, records and other assets and staff.
Improvements are being made to secure the premises, equipment, records and other assets.
Staff members, including new staff, have been informed about new security measures put in place and the process for reporting unauthorised access through team meetings or awareness sessions or staff briefing or induction materials.
All reasonable steps have been taken to ensure the premises, equipment, records and other assets are physically secured. Physical security measures are subject to regular risk assessment.
All improvements identified by the risk assessment have been fully implemented to prevent unauthorised access to the premises, equipment, records and other assets.
No new security equipment was required
Providing staff with guidance and procedures for protecting the premises, equipment, records and other assets does not provide sufficient assurance that the guidance and procedures have been understood and are being followed, therefore compliance spot checks and routine monitoring are conducted.
Latest Information Governance Review meeting