Staff training issues
Every member of staff must know their responsibilities toward University data. All staff must be aware of their responsibilities with regard to restricted UOB data, not to mention their legal liability toward personal/sensitive data. Research postgraduates too have a legal responsibility toward any personal/sensitive data they gather, process and store.
New and casual staff
- All new staff, including casual staff, must be given a contract of employment containing a confidentiality clause. If you employ casual staff issue them with the recommended standard contract from the Personnel forms bank.
- All new staff must be made aware of their responsibilities toward restricted University data and personal data as part of their induction process. Good starting points are the Information security: staff induction training guide (currently in preparation - link to be added soon) and the Information security training and quiz. Also make sure you inform them of any specific information security issues related to their role.
Current staff
- Current staff, if they have not had any information security training, should make themselves familiar with all of the information contained within the Information Security website, including the Information security: staff induction training guide (currently in preparation) and the Information security training and quiz.
Staff leaving the University
- Don't let ex-staff members retain access to their University accounts. Make sure that accounts are made inaccessible as soon as a person leaves the University.
- Advise staff members of this before they leave so that they can transfer legitimate non-University data in advance of their leaving date.
Research postgraduates