General Description
The assessment consists of a structured report on the topic of information governance
(3000 words). The report will contain three main sections together with an introduction and conclusion.
Introduction: This should contain a summary of the content of the upcoming report. Include the key information
governance issues with which each section is concerned, any frameworks used, and cases drawn upon (150
words).
Section A: Governing personal data within a smart city context (900 words). This section should consist of two
subsections structured in accordance with Step 1 and Step 2 of the Assessing Governability framework. Each
sub-section should consist of a maximum of 450 words each. Additionally, you must draw on the in-class Smart
City case study, taking care to explain the assessment criteria for Step 1 and Step 2, to apply the criteria to the
case citing evidence from the case, and to provide suggestions for how governing of personal data can be
improved.
Section B: GDPR and its implementation in organisations (900 words). This section should consist of two sub
sections. The first subsection should identify and describe the main components of GDPR (450 words); the
second subsection should provide examples of the issues and challenges involved in implementing GDPR in
organisations and how implementation can be improved (450 words). Responses to Section B must draw on the
issues and challenges presented in the ICO TikTok case study.
Section C: Information governance: competencies (900 words). A range of individuals and groups of people are
involved in contributing to mitigating the risks of data/information processing and/or adding to its value. These
include data scientists, data architects, data analysts, data visualisation experts; as well as records managers, IT
risk and governance managers; and end-users who make decisions based on the data/information e.g. business
users, performance managers, financial analysts etc. In Section C we are asking you to reflect on the implications
of information governance for organisations and individual employees.
Conclusion: This should contain a summary of the report. Include key lessons from the application of the
frameworks to the cases, and how information governance has been improved