Any organisation that operates CCTV for business purposes should have a CCTV policy and demonstrate an ongoing, legitimate need for their system. They must also register the system with the Information Commissioner’s Office (ICO). The introduction of GDPR in May 2018 includes CCTV as data that should be appropriately managed and secured. To ensure this system is managed correctly we can help with the security policy development.
Dobson Owens will review CCTV arrangements at an organisation and advise on any associated data protection issues. We will then utilise our policy development services, preparing a comprehensive CCTV Policy that incorporates the key requirements including:
- System owner/responsibility
- System purpose
- Viewing of images and system administration arrangements
- Recording, storage and retention period
- Access to images