How the Care Inspectorate captures and manages information risk
This presentation wishes to explore how we (as a the scrutiny and improvement body for social care and social work services across Scotland) approach information risk in the organisation throughout its lifecycle- how we identify information risk through conducting DPIAs, pick up risks in incident reporting process, the Records Management Plan and how we capture and manage the risks identified and communicate this effectively with IAOs and SIRO at the organisation. In this way, we will explore from the start-end of process how we navigate the sometimes-rough seas of information risk.