Global Information Governance and Data Protection Committee
The purpose of the Global Information Governance and Data Protection Committee (GIGDPC) is to:
a. Monitor the University and Heriot-Watt Group’s compliance with the seven principles of data protection:
- Accountability
- Accuracy
- Data Minimisation
- Integrity and Confidentiality
- Lawfulness, Fairness and Transparency
- Purpose Limitation
- Storage Limitation
and provide assurance to the University Executive and other Executive Boards as appropriate.
b. Support the University and Heriot-Watt Group in identifying and managing its information needs, risks and responsibilities, to optimise the use of information to support Strategy 2025 and suggest improvements based on sector benchmarking.
c. Review policies and procedures that comprise the Information Security Management System (ISMS), recommending action where appropriate to strengthen information security controls.
d. Work closely with the Global Operations Executive and other relevant bodies to ensure that data protection principles, particularly data protection by design and default, and the principles of lifecycle information governance are embedded in all relevant projects.
Terms of Reference
Read the Global Information Governance and Data Protection Committee Terms of Reference.