Surveillance and Data Use Policies
Dear City of West Torrens,
I am submitting a request for information under the Freedom of Information Act. I kindly request access to the following documents, policies, and details:
Surveillance Policy
* A copy of the council’s policy on surveillance, including but not limited to the use of CCTV, video monitoring, facial recognition, or other forms of surveillance technology.
* Any guidelines or frameworks related to how decisions are made regarding the disclosure of surveillance information to the public, and the criteria or processes used to determine which areas or assets are selected for surveillance.
Internet of Things (IoT) Policy (Including Surveillance)
* A copy of the council’s policy related to the use and management of Internet of Things (IoT) devices, including but not limited to smart streetlights, traffic sensors, environmental monitoring systems, or other connected devices used by the council, including surveillance-related devices such as cameras or sensors.
* This includes but is not limited to how data is collected, stored, processed, secured, and accessed from such devices, as well as any relevant protocols for integrating surveillance through IoT technology into council operations.
Cybersecurity Policy
* A copy of the council’s policy regarding cybersecurity practices to protect council data, networks, and digital assets, including but not limited to details on encryption, firewalls, incident response procedures, data retention policies, and measures taken to prevent cyber attacks and ensure data integrity and confidentiality.
AI Data Use Policy
* A copy of the council’s policy on the use of Artificial Intelligence (AI) systems that collect, process, or utilise data, including but not limited to the types of AI systems employed, the data these systems process (e.g., personal data, public records, operational data), decision-making processes involving AI, and measures for mitigating risks associated with bias, transparency, and accountability.
* This includes but is not limited to any policies regarding the sale or transfer of data processed by AI systems to third parties, whether for commercial purposes or otherwise.
Notifiable Breach Policy (For Surveillance, IoT, Cybersecurity, and AI Data Use)
* A copy of the council’s policy for notifiable data breaches related to the areas above: surveillance, IoT, cybersecurity, and AI data use, including but not limited to the process by which the council identifies, assesses, and reports data breaches to relevant authorities or affected individuals, the timelines for notification, and any remedial actions taken post-breach.
Dates of Policy Drafting and Revisions
* For each of the above policies (surveillance, IoT, cybersecurity, AI data use, and notifiable breach policies), I request the date the policy was originally drafted and the date of the most recent revision or update.
Yours faithfully,
Amy Patterson
Thank you for your email, this is an acknowledgement that your message has
been received.
In accordance with our [1]customer service charter, we will endeavour to
answer all emails requiring a response within 15 business days.
If your email relates to a review of a parking expiation, please refer to
the information provided on councils [2]website and complete the
[3]Council review of expiation online form.
If the matter is urgent, please contact us at 8416 6333.
City of West Torrens | 165 Sir Donald Bradman Drive, Hilton SA 5033
Phone: [4]+61 (08) 8416 6333
Email: [5][email address] | [6]www.westtorrens.sa.gov.au
(This is an automated email response)
References
Visible links
1. https://www.westtorrens.sa.gov.au/Counci...
2. https://www.westtorrens.sa.gov.au/Servic...
3. https://www.westtorrens.sa.gov.au/Servic...
4. file:///tmp/tel:+61884166333
5. mailto:[email address]
6. http://www.westtorrens.sa.gov.au/
Good afternoon Amy,
Thank you for your time earlier on the phone. I acknowledge receipt of
your application made under the Freedom of Information Act 1991 (SA) (FOI
Act) received by this agency on 9 September 2024 seeking access to:
o Surveillance Policy
o A copy of the council’s policy on surveillance, including but not
limited to the use of CCTV, video monitoring, facial recognition,
or other forms of surveillance technology.
o Any guidelines or frameworks related to how decisions are made
regarding the disclosure of surveillance information to the
public, and the criteria or processes used to determine which
areas or assets are selected for surveillance.
o Internet of Things (IoT) Policy (Including Surveillance)
o A copy of the council’s policy related to the use and management
of Internet of Things (IoT) devices, including but not limited to
smart streetlights, traffic sensors, environmental monitoring
systems, or other connected devices used by the council,
including surveillance-related devices such as cameras or
sensors.
o This includes but is not limited to how data is collected,
stored, processed, secured, and accessed from such devices, as
well as any relevant protocols for integrating surveillance
through IoT technology into council operations.
o Cybersecurity Policy
o A copy of the council’s policy regarding cybersecurity practices
to protect council data, networks, and digital assets, including
but not limited to details on encryption, firewalls, incident
response procedures, data retention policies, and measures taken
to prevent cyber attacks and ensure data integrity and
confidentiality.
o AI Data Use Policy
o A copy of the council’s policy on the use of Artificial
Intelligence (AI) systems that collect, process, or utilise data,
including but not limited to the types of AI systems employed,
the data these systems process (e.g., personal data, public
records, operational data), decision-making processes involving
AI, and measures for mitigating risks associated with bias,
transparency, and accountability.
o This includes but is not limited to any policies regarding the
sale or transfer of data processed by AI systems to third
parties, whether for commercial purposes or otherwise.
o Notifiable Breach Policy (For Surveillance, IoT, Cybersecurity, and AI
Data Use)
o A copy of the council’s policy for notifiable data breaches
related to the areas above: surveillance, IoT, cybersecurity, and
AI data use, including but not limited to the process by which
the council identifies, assesses, and reports data breaches to
relevant authorities or affected individuals, the timelines for
notification, and any remedial actions taken post-breach.
o Dates of Policy Drafting and Revisions
o For each of the above policies (surveillance, IoT, cybersecurity,
AI data use, and notifiable breach policies), I request the date
the policy was originally drafted and the date of the most recent
revision or update.
Your application is currently being processed in accordance with the FOI
Act. Please find attached the schedule of prescribed fees and charges
that will be charged for dealing with this application. If an advanced
deposit is required pursuant to s17 of the FOI Act, I will be in contact
with you.
Once the application fee of $42.00 (invoice attached) of proof of
concession is received, this agency is obliged to answer your application
within 30 calendar days of receipt. If you are dissatisfied with the
determination regarding your application, or if you do not receive a
response within 30 calendar days, you are entitled to apply for an
internal review in accordance with section 29 of the FOI Act. Your
internal review application must be lodged within 30 calendar days after
the day you receive your determination, or within 30 calendar days after
the date the determination should have been made if you have not received
a response.
To make an internal review application, you can write a letter or send the
attached form entitled Application for Review of Determination to the
Principal Officer of this agency, Mr Angelo Catinari. Should you submit an
application for an internal review, please include an application fee of
$42.00 or if you qualify for a concession, please include a copy of your
concession card as proof.
If, at any time, you are dissatisfied with the way your application is
being handled by this agency, please contact me on 8416 6265 or contact
the Ombudsman SA on 7322 7020.
Should you require any further information, please contact me on the
details below.
Kind regards,
Liz Johnson | Manager Governance and Risk | Accredited Freedom of
Information Officer | Governance and Risk
City of West Torrens | 165 Sir Donald Bradman Drive, Hilton SA 5033
Phone: [1]+61 (08) 8416 6265
| Email: [2][email address] | [3]www.westtorrens.sa.gov.au
From: Amy Patterson <[FOI #12036 email]>
Sent: Monday, September 9, 2024 11:32 AM
To: City of West Torrens <[email address]>
Subject: Freedom of Information request - Surveillance and Data Use
Policies
CAUTION: This email originated from outside of the organisation. Do not
click links or open attachments unless you recognise the sender and know
the content is safe.
Dear City of West Torrens,
I am submitting a request for information under the Freedom of Information
Act. I kindly request access to the following documents, policies, and
details:
Surveillance Policy
* A copy of the council’s policy on surveillance, including but not
limited to the use of CCTV, video monitoring, facial recognition, or other
forms of surveillance technology.
* Any guidelines or frameworks related to how decisions are made regarding
the disclosure of surveillance information to the public, and the criteria
or processes used to determine which areas or assets are selected for
surveillance.
Internet of Things (IoT) Policy (Including Surveillance)
* A copy of the council’s policy related to the use and management of
Internet of Things (IoT) devices, including but not limited to smart
streetlights, traffic sensors, environmental monitoring systems, or other
connected devices used by the council, including surveillance-related
devices such as cameras or sensors.
* This includes but is not limited to how data is collected, stored,
processed, secured, and accessed from such devices, as well as any
relevant protocols for integrating surveillance through IoT technology
into council operations.
Cybersecurity Policy
* A copy of the council’s policy regarding cybersecurity practices to
protect council data, networks, and digital assets, including but not
limited to details on encryption, firewalls, incident response procedures,
data retention policies, and measures taken to prevent cyber attacks and
ensure data integrity and confidentiality.
AI Data Use Policy
* A copy of the council’s policy on the use of Artificial Intelligence
(AI) systems that collect, process, or utilise data, including but not
limited to the types of AI systems employed, the data these systems
process (e.g., personal data, public records, operational data),
decision-making processes involving AI, and measures for mitigating risks
associated with bias, transparency, and accountability.
* This includes but is not limited to any policies regarding the sale or
transfer of data processed by AI systems to third parties, whether for
commercial purposes or otherwise.
Notifiable Breach Policy (For Surveillance, IoT, Cybersecurity, and AI
Data Use)
* A copy of the council’s policy for notifiable data breaches related to
the areas above: surveillance, IoT, cybersecurity, and AI data use,
including but not limited to the process by which the council identifies,
assesses, and reports data breaches to relevant authorities or affected
individuals, the timelines for notification, and any remedial actions
taken post-breach.
Dates of Policy Drafting and Revisions
* For each of the above policies (surveillance, IoT, cybersecurity, AI
data use, and notifiable breach policies), I request the date the policy
was originally drafted and the date of the most recent revision or update.
Yours faithfully,
Amy Patterson
-------------------------------------------------------------------
Please use this email address for all replies to this request:
[4][FOI #12036 email]
Is [5][City of West Torrens request email] the wrong address for Freedom of Information
requests to City of West Torrens? If so, please contact us using this
form:
[6]https://www.righttoknow.org.au/change_re...
This request has been made by an individual using Right to Know. This
message and any reply that you make will be published on the internet.
More information on how Right to Know works can be found at:
[7]https://www.righttoknow.org.au/help/offi...
Please note that in some cases publication of requests and responses will
be delayed.
If you find this service useful as an FOI officer, please ask your web
manager to link to us from your organisation's FOI page.
References
Visible links
1. file:///tmp/tel:+61884166265
2. mailto:[email address]
3. http://www.westtorrens.sa.gov.au/
4. mailto:[FOI #12036 email]
5. mailto:[City of West Torrens request email]
6. https://www.righttoknow.org.au/change_re...
7. https://www.righttoknow.org.au/help/offi...
Good afternoon Amy,
Thank you for the call today regarding your freedom of information
application. As confirmed today, the City of West Torrens has received the
application fee payment. Thank you for sending this through so promptly.
An accredited freedom of information officer has begun processing your
application in line with the legislative requirements as detailed in the
email below.
Should you have any questions or queries, please don't hesitate to contact
me.
Kind regards,
Liz
From: Liz Johnson
Sent: Monday, October 28, 2024 2:24 PM
To: Amy Patterson <[FOI #12036 email]>
Subject: RE: Freedom of Information request - Surveillance and Data Use
Policies
Good afternoon Amy,
Thank you for your time earlier on the phone. I acknowledge receipt of
your application made under the Freedom of Information Act 1991 (SA) (FOI
Act) received by this agency on 9 September 2024 seeking access to:
o Surveillance Policy
o A copy of the council’s policy on surveillance, including but not
limited to the use of CCTV, video monitoring, facial recognition,
or other forms of surveillance technology.
o Any guidelines or frameworks related to how decisions are made
regarding the disclosure of surveillance information to the
public, and the criteria or processes used to determine which
areas or assets are selected for surveillance.
o Internet of Things (IoT) Policy (Including Surveillance)
o A copy of the council’s policy related to the use and management
of Internet of Things (IoT) devices, including but not limited to
smart streetlights, traffic sensors, environmental monitoring
systems, or other connected devices used by the council,
including surveillance-related devices such as cameras or
sensors.
o This includes but is not limited to how data is collected,
stored, processed, secured, and accessed from such devices, as
well as any relevant protocols for integrating surveillance
through IoT technology into council operations.
o Cybersecurity Policy
o A copy of the council’s policy regarding cybersecurity practices
to protect council data, networks, and digital assets, including
but not limited to details on encryption, firewalls, incident
response procedures, data retention policies, and measures taken
to prevent cyber attacks and ensure data integrity and
confidentiality.
o AI Data Use Policy
o A copy of the council’s policy on the use of Artificial
Intelligence (AI) systems that collect, process, or utilise data,
including but not limited to the types of AI systems employed,
the data these systems process (e.g., personal data, public
records, operational data), decision-making processes involving
AI, and measures for mitigating risks associated with bias,
transparency, and accountability.
o This includes but is not limited to any policies regarding the
sale or transfer of data processed by AI systems to third
parties, whether for commercial purposes or otherwise.
o Notifiable Breach Policy (For Surveillance, IoT, Cybersecurity, and AI
Data Use)
o A copy of the council’s policy for notifiable data breaches
related to the areas above: surveillance, IoT, cybersecurity, and
AI data use, including but not limited to the process by which
the council identifies, assesses, and reports data breaches to
relevant authorities or affected individuals, the timelines for
notification, and any remedial actions taken post-breach.
o Dates of Policy Drafting and Revisions
o For each of the above policies (surveillance, IoT, cybersecurity,
AI data use, and notifiable breach policies), I request the date
the policy was originally drafted and the date of the most recent
revision or update.
Your application is currently being processed in accordance with the FOI
Act. Please find attached the schedule of prescribed fees and charges
that will be charged for dealing with this application. If an advanced
deposit is required pursuant to s17 of the FOI Act, I will be in contact
with you.
Once the application fee of $42.00 (invoice attached) of proof of
concession is received, this agency is obliged to answer your application
within 30 calendar days of receipt. If you are dissatisfied with the
determination regarding your application, or if you do not receive a
response within 30 calendar days, you are entitled to apply for an
internal review in accordance with section 29 of the FOI Act. Your
internal review application must be lodged within 30 calendar days after
the day you receive your determination, or within 30 calendar days after
the date the determination should have been made if you have not received
a response.
To make an internal review application, you can write a letter or send the
attached form entitled Application for Review of Determination to the
Principal Officer of this agency, Mr Angelo Catinari. Should you submit an
application for an internal review, please include an application fee of
$42.00 or if you qualify for a concession, please include a copy of your
concession card as proof.
If, at any time, you are dissatisfied with the way your application is
being handled by this agency, please contact me on 8416 6265 or contact
the Ombudsman SA on 7322 7020.
Should you require any further information, please contact me on the
details below.
Kind regards,
Liz Johnson | Manager Governance and Risk | Accredited Freedom of
Information Officer | Governance and Risk
City of West Torrens | 165 Sir Donald Bradman Drive, Hilton SA 5033
Phone: [1]+61 (08) 8416 6265
| Email: [2][email address] | [3]www.westtorrens.sa.gov.au
From: Amy Patterson <[4][FOI #12036 email]>
Sent: Monday, September 9, 2024 11:32 AM
To: City of West Torrens <[5][email address]>
Subject: Freedom of Information request - Surveillance and Data Use
Policies
CAUTION: This email originated from outside of the organisation. Do not
click links or open attachments unless you recognise the sender and know
the content is safe.
Dear City of West Torrens,
I am submitting a request for information under the Freedom of Information
Act. I kindly request access to the following documents, policies, and
details:
Surveillance Policy
* A copy of the council’s policy on surveillance, including but not
limited to the use of CCTV, video monitoring, facial recognition, or other
forms of surveillance technology.
* Any guidelines or frameworks related to how decisions are made regarding
the disclosure of surveillance information to the public, and the criteria
or processes used to determine which areas or assets are selected for
surveillance.
Internet of Things (IoT) Policy (Including Surveillance)
* A copy of the council’s policy related to the use and management of
Internet of Things (IoT) devices, including but not limited to smart
streetlights, traffic sensors, environmental monitoring systems, or other
connected devices used by the council, including surveillance-related
devices such as cameras or sensors.
* This includes but is not limited to how data is collected, stored,
processed, secured, and accessed from such devices, as well as any
relevant protocols for integrating surveillance through IoT technology
into council operations.
Cybersecurity Policy
* A copy of the council’s policy regarding cybersecurity practices to
protect council data, networks, and digital assets, including but not
limited to details on encryption, firewalls, incident response procedures,
data retention policies, and measures taken to prevent cyber attacks and
ensure data integrity and confidentiality.
AI Data Use Policy
* A copy of the council’s policy on the use of Artificial Intelligence
(AI) systems that collect, process, or utilise data, including but not
limited to the types of AI systems employed, the data these systems
process (e.g., personal data, public records, operational data),
decision-making processes involving AI, and measures for mitigating risks
associated with bias, transparency, and accountability.
* This includes but is not limited to any policies regarding the sale or
transfer of data processed by AI systems to third parties, whether for
commercial purposes or otherwise.
Notifiable Breach Policy (For Surveillance, IoT, Cybersecurity, and AI
Data Use)
* A copy of the council’s policy for notifiable data breaches related to
the areas above: surveillance, IoT, cybersecurity, and AI data use,
including but not limited to the process by which the council identifies,
assesses, and reports data breaches to relevant authorities or affected
individuals, the timelines for notification, and any remedial actions
taken post-breach.
Dates of Policy Drafting and Revisions
* For each of the above policies (surveillance, IoT, cybersecurity, AI
data use, and notifiable breach policies), I request the date the policy
was originally drafted and the date of the most recent revision or update.
Yours faithfully,
Amy Patterson
-------------------------------------------------------------------
Please use this email address for all replies to this request:
[6][FOI #12036 email]
Is [7][City of West Torrens request email] the wrong address for Freedom of Information
requests to City of West Torrens? If so, please contact us using this
form:
[8]https://www.righttoknow.org.au/change_re...
This request has been made by an individual using Right to Know. This
message and any reply that you make will be published on the internet.
More information on how Right to Know works can be found at:
[9]https://www.righttoknow.org.au/help/offi...
Please note that in some cases publication of requests and responses will
be delayed.
If you find this service useful as an FOI officer, please ask your web
manager to link to us from your organisation's FOI page.
References
Visible links
1. file:///tmp/tel:+61884166265
2. mailto:[email address]
3. http://www.westtorrens.sa.gov.au/
4. mailto:[FOI #12036 email]
5. mailto:[email address]
6. mailto:[FOI #12036 email]
7. mailto:[City of West Torrens request email]
8. https://www.righttoknow.org.au/change_re...
9. https://www.righttoknow.org.au/help/offi...