Information Governance

The Information Governance Committee provides strategic direction for cultural change to ensure adherence to best practice in information management, risk and security.

All information held by the University is subject to the terms of the Freedom of Information (Scotland) 2002 Act. This Act gives members of the public a general right of access to all recorded information, of any age, held by the University.

Under data protection legislation, the University is legally obliged to protect any personal information that it holds. Members of the University may use personal information for management, administration, research, etc, but must ensure that they conform to the University's Data Protection and Privacy Policy.

Records are required to be kept for business, legislative and fiscal purposes. Records management ensures that the University’s records, both hardcopy and electronic, are managed to meet these requirements including the development of retention schedules and secure storage.

The revised Information Governance Committee was established in 2017 and is chaired by the University Secretary and members are at Executive level.

The Information Management Forum considers the complex risk and regulatory environment in which the University operates and manages the risks associated with data security and storage.