Corporate governance
The Information Commissioner, Richard Thomas, reports directly to Parliament. As accounting officer he is directly responsible for safeguarding the public funds for which he has charge, for propriety and regularity in the handling of those public funds, and for the day to day operations and management of his office.
The Commissioner is supported by his Management Board which is responsible for providing strategic direction and corporate governance. The Board meets every quarter and comprises members of his Executive Team and four non-executive directors:
Dr Robert Chilton
David Clarke
Sir Alistair Graham
Clare Tickell
The Executive Team is responsible for office-wide leadership, articulation of policies and ensuring the office is effectively and efficiently well-managed. The Executive Team meets approximately every fortnight. In addition to the Commissioner its members are:
Vicky Best - Director of Human Resources
Simon Entwisle - Chief Operating Officer
Susan Fox - Director of Communications and External Relations
David Smith - Deputy Commissioner, data protection
Graham Smith - Deputy Commissioner, freedom of information
Nick Tyler - Director of Legal Services
The Commissioner is also supported by an Audit Committee which is responsible for scrutiny, oversight and assurance of risk control and governance procedures. The Committee comprises:
Dr Robert Chilton
David Clarke
Graham Smith
Key achievements and changes 2006/07
Richard Thomas was re-appointed as Information Commissioner for a further two years, until June 2009, providing continuity of leadership for his office.
The corporate governance arrangements, introduced in summer 2005, were reviewed during 2006/07 and were found to be working well. In addition, a business planning policy and procedure were agreed which resulted in a new more focused format for the ICO’s 2007/08 business plan, in addition to the publication of the Corporate Plan 2007 – 2010.
Risk management policies and procedures were also reviewed during the year, resulting in a refreshed corporate risk register and the development of business unit risk registers.