Information governance and data protection points of contact | The Pensions Regulator Skip to main content

Your browser is out of date, and unable to use many of the features of this website

Please upgrade your browser.

Ignore

This website requires cookies. Your browser currently has cookies disabled.

Information governance and data protection points of contact

 

FOI reference - FOI-4385
Date - 20 January 2020

Request

  1. Name of SIRO (Senior Information Risk Owner) or similar post (Chief Information Governance Officer etc), or responsible person for SIRO duties.
  2. Contact email of person named in request No. 1.
  3. Name of DPO (Data Protection Officer) or responsible person for DPO duties.
  4. Contact email of DPO.
  5. Name of person with overall responsibility for Cyber security or equivalent (excluding persons in q1 and q3).
  6. Contact email of person in Q5.
  7. Name of person with overall responsibility for information security or equivalent (excluding persons in q1, q3 and 5).
  8. Contact email of person in Q7.
  9. Name of person with overall responsibility for information Governance or equivalent (excluding persons in q1, q3, q5 and q7).
  10. Contact email of person in Q9
  11. Do you have appointed Information Asset Owners (IAO's)?
  12. If yes, whom is responsible for leading the IAO structure and implementing any training requirements for the IAOs?
  13. Are you or have you considered becoming ISO 27001 compliant or certified? If so whom is responsible for maintaining this? (as in, the person)
  14. Contact email of person in Q: 13.
  15. Are you required to connect to the PSN Code of Connection (CoCo)? If so whom is responsible for complying with its requirements? (as in, the person)
  16. Contact email of person in Q:15.

I can confirm that we the information you have requested

Response

Information we are able to supply

  1. Name of SIRO (Senior Information Risk Owner) or similar post (Chief Information Governance Officer etc), or responsible person for SIRO duties.

    Teena Tyrrell

  2. Contact email of person named in request No. 1. 

    Teena.Tyrrell@tpr.gov.uk

  3. Name of DPO (Data Protection Officer) or responsible person for DPO duties. 

    Teena Tyrrell

  4. Contact email of DPO. 

    DPO@tpr.gov.uk

  5. Name of person with overall responsibility for Cyber security or equivalent (excluding persons in q1 and q3). 

    Not applicable

  6. Contact email of person in Q5. 

    DPO@tpr.gov.uk

  7. Name of person with overall responsibility for information security or equivalent (excluding persons in q1, q3 and 5). 

    Not applicable

  8. Contact email of person 

    DPO@tpr.gov.uk

  9. Name of person with overall responsibility for information Governance or equivalent (excluding persons in q1, q3, q5 and q7). 

    Phil Yeoman

  10. Contact email of person in Q9

    Phil.Yeoman@tpr.gov.uk

  11. Do you have appointed Information Asset Owners (IAO's)?

    Yes

  12. If yes, whom is responsible for leading the IAO structure and implementing any training requirements for the IAOs? 

    We have a register of IAOs. There are no specific training requirements for IOAs, as is the case with all staff IAOs are accountable to the internal information management policies and have to undergo annual mandatory information security training.

  13. Are you or have you considered becoming ISO 27001 compliant or certified? If so whom is responsible for maintaining this? (as in, the person) 

    We are ISO 27001 certified – Teena Tyrrell is responsible for maintaining this.

  14. Contact email of person in Q: 13. 

    Teena.Tyrrell@tpr.gov.uk

  15. Are you required to connect to the PSN Code of Connection (CoCo)? If so whom is responsible for complying with its requirements? (as in, the person)

    No. 

  16. Contact email of person in Q:15.

    Not applicable