Page 49 - OKelly Sutton Employee Handbook March19
P. 49

Lone-working must be authorised on-site outside of normal working hours.

               Employees who are issued with Company property such as work tools, samples, finished product or
               other articles, laptop computers and mobile telephones are required to look after their safety when
               taken off Company premises. Such items should not be left in an unattended area or in an unoccupied
               vehicle at any time.

               3.16.4 Unauthorised Software
               Only software, which has been licensed by the Company, may be used on the Company's computer
               systems  and  under  no  circumstances  should  copyrighted  software  be  copied  or  shared.  The
               Company’s regularly conducts audits of the network to check for unauthorised software.

               3.16.5 Personal Software
               You may not load any software or disk which has not been checked for electronic virus(es) by the
               Company. You are requested not to attach any equipment to your PC without the prior approval of
               the IT Service provider or a Partner/Director.

               3.16.6 General PC Security
               You must also adhere to general IT security policy by using confidential passwords to access work files
               and individual document passwords on confidential files.


               3.17 PRIVACY AND DATA PROTECTION


                       Please  refer  to  the  Company  Privacy  and  Data  Protection  Policy  for  full  details.  The
                       information  in  this  section  is  intended  to  give  you  an  indication  of  your  duties  and
                       responsibilities with regard to your own privacy and the privacy of individuals.

               3.17.1 Definitions
               ‘Data Protection Acts’ refers to the General Data Protection Regulation (GDPR). Those who keep
               data about individuals, including employers, must comply with data protection principles.
               ‘Data’ means information in a form which can be processed. It now includes both automated data
               and manual data.

               ‘Personal data’ means data relating to a living individual who is or can be identified either from the
               data or from the data in conjunction with other information that is in, or is likely to come into, the
               possession of the data controller

               ‘Data Subject’ is an individual who is the subject of personal data

               ‘Sensitive personal data’ relates to specific categories of data which are defined as data relating to a
               person’s racial origin; political opinions or religious or other beliefs; physical or mental health; sexual
               life; criminal convictions or the alleged commission of an offence; trade union membership

               ‘Subject Access Request’ is a right that individuals have to obtain from any company the information
               that is held about them by that company.






                                                      Page 48 of 72
   44   45   46   47   48   49   50   51   52   53   54