Our Commitment
Queensland Rail recognises the public interest in information it holds, the importance of information to its business and the need to both control and protect information and all forms of technology that supports it, whilst leveraging and maximizing its value and operating in an open and transparent manner.
Queensland Rail is committed to managing its information and technology assets in an accountable and coordinated manner in accordance with legislative requirements, applicable government policies and principles of good governance and openness and transparency.
Queensland Rail will strive to become a data driven organisation- open and connected, and utilising insights to think, plan and do.
What we will do
To support the achievement of business objectives and maintain effective information protection and governance, we will ensure:
Information is recognised as a Valuable Asset -
- maintaining an integrated information security and governance framework to
effectively manage information assets and provide assurances that information
risk and compliance protocols are being effectively applied
- promoting a leadership driven culture of accountability and
responsibility for the retention, protection and proper use of Queensland
Rail’s information assets; and
- proactively capitalising information to ensure maximum business benefit.
Information is actively managed and compliant by -
- reviewing the effectiveness of the information framework and related protocols, standards and controls through monitoring, assessments and consultation
- assigning accountability for managing information domains; and
- providing information management training to promote understanding of the demands of contemporary information management practices.
Information is accurate and secured by -
- adequately protecting information, to ensure it meets privacy, confidentiality and integrity standards, is compatible with human rights and regularly review information management protocols to ensure the confidentiality of sensitive information assets; and
- ensuring the security and integrity of information and data through the application of controls throughout the information lifecycle.
Information and technology are reliable and secure by -
- securing and protecting technology to protect the data and services that
it supports. The security of the information and technology will be managed via
a management system consistent with the
Queensland Government Information Security Standards.
Information is shared and accessible by -
- ensuring information is open, shared and accessible by default, to create an open transparent business; and
- only using confidentiality provisions by exception where there is a strong justification for confidentiality.
Information is commonly described by -