Information

Our Strategic Plan 2021-25 was approved by the Parliament corporation and was laid before the Scottish Parliament on 24 November 2021.

A revised Strategic Plan was laid before the Scottish Parliament on 28 February 2023. Below is a link to the revised plan. 

Strategic Plan

Our purpose and vision

To support and promote the adoption of lawful, effective and ethical practices in relation to the acquisition, retention, use and destruction of biometric data for criminal justice and police purposes in Scotland.  Our strategic priorities are directly aligned to the statutory functions of the Commissioner as established in Section 2(3) of the Scottish Biometrics Commissioner Act 2020.

Our values

• Independent

• Transparent

• Proportionate

• Accountable

This document sets out the Scottish Biometrics Commissioner's risk management plan in line with the strategic plan and annual business plan for the period.  It sets out our appetite for risk and how we assess the risks to achieving our business plan.  It should be read in conjunction with our Risk Management Policy, within the Scheme of Governance and Risk Management Handbook.

Risk Policy and Risk Register

The Scottish Biometrics Commissioner recognises that to deliver its strategic aims, objectives and priorities successfully, it needs sound corporate governance and control mechanisms in place.

This handbook sets out the roles, responsibilities and procedures for the effective and efficient conduct of the Scottish Biometrics Commissioner's business.

Scheme of Governance and Risk Handbook

As a Scottish Public Authority, the Scottish Biometrics Commissioner is committed to governance excellence and to being accountable and transparent for its decisions and activities.

The handbook contains details on the following:

• Governance and Internal Control

• Scheme of Delegation

• Code of Professional Conduct

• Whistleblowing Policy

• Anti-Fraud Policy

• Risk Management Policy

This Handbook for staff describes a range of our policies around records management and data protection.  The following policies are included:

• Records Management policy
• Business Classification Scheme
• File Management Guidance
• Retention and Disposal policy
• Information Sharing policy
• Records Management and Security Guidance
• Clear Desk and Screen policy
• Protective Marking System
• Complying with Information Legislation
• Data Protection policy and procedure
• Data Protection Impact Assessments
• Protocol for Data Security Incidents

Information Governance Handbook

This guidance presents the Scottish Biometrics Commissioner's approach to the effective management of its records through retention and disposal.  This guidance is based on the Scottish Government's approach.

File Type Guidance

This Handbook for staff contains all our finance-related policies.  The following policies are included:

• Travel and expenses policy
• Gifts and hospitality
• Budgetary control and financial planning policy
• Budgetary control and financial planning procedure
• Finance processing procedures
• Procurement policy
• Procurement procedure
• Finance policy on fixed assets

Finance Policies

Please find our annual Business Plan for 2023/24.

This Business Plan for 2023/24 sets out the priorities of the Scottish Biometrics Commissioner (SBC) for the coming year to ensure the delivery of the outcomes set out in our Strategic Plan 2021/25. Our Business Plan is intentionally ambitious and builds on the achievements of earlier fiscal years where we have successfully delivered and consolidated the SBC function, achieving all objectives whilst operating within our allocated budget. In this our third financial cycle, we will do so again.

The Scottish Biometrics Commissioner on 25 October 2022 laid his first annual report and accounts before the Scottish Parliament.

The report provides information on the Commissioner's functions in providing independent oversight of how biometric data and technologies are used for policing and criminal justice purposes in Scotland and information on our performance and finances.  A separate report from the external auditor of our financial statements will be published on the Audit Scotland website.

The Commissioner - Dr Brian Plastow said "My overall strategic conclusions from our activity in 2021 to 2022 is that the Parliament should have confidence in the ways in which biometric data and technologies are currently used for policing and criminal justice purposes in Scotland."

Annual Report & Accounts 2021/22

Annual Report & Accounts 2022/23

Annual (Operational) Report 2022/23

These quarterly governance meetings consider and sign-off corporate governance and strategic issues, and provide the Commissioner with assurance that the Scheme of Control protocols are being implemented effectively.

Governance decisions may be taken between formal meetings but are recorded and ratified at the next quarterly governance meeting.

The agenda, venue and time of the meeting are published no later than 5 working days before the meeting with any supporting papers.

2023

• 25 January

• 27 April 

2022

• 27 October

• 28 July

• 28 April

The purpose of the monthly management team meeting is for the Commissioner and staff to share information and discuss tactical issues relating to the discharge of statutory obligations, corporate and operational performance, and progress with activity in support of the strategic plan.

The agenda, venue and time of the meeting is published no later than 5 working days before the meeting with any supporting papers.

2023

• 22 February

• 23 March 

• 26 May

• 4 July 

2022

• 22 December

• 23 November

• 15 September

• 25 August

• 30 June

• 26 May

• 31 March

• 24 February

• 27 January

The Scottish Biometrics Commissioner is committed to providing high-quality customer services.  If something goes wrong or you are dissatisfied with our services, please tell us.  This document describes our complaints procedure and how to make a complaints.  It also tells you about how we will handle your complaint and what you can expect from us.

Complaints Handling Procedure

Complaints Handling Procedure

Publication Scheme

The purpose of this guide is to:

• allow the public to see what information is and is not available in relation to each class
• state what charges may be applied
• explain how to find the information easily
• provide contact details for enquiries and to get help with accessing the information
• explain how to request information we hold that has not been published

Publication Scheme

This document sets out a roadmap listing the different records to be maintained by the Scottish Biometrics Commissioner.

File Plan

The Freedom of Information (Scotland) Act 2002 provides a right of access to all types of recorded information held by public authorities, sets out exemptions to that right and places a number of related obligations on public authorities, particularly in relation to Records Management and Publication Schemes.

Individuals have the right to request access to information, be informed whether or not the public authority holds that information and, subject to various statutory exemptions, be supplied with that information.

Please see our Publication Scheme and Disclosure Log before submitting a request as the information you seek may already be available.

As part of our commitment to demonstrate openness and transparency in respect of the information we hold, an anonymised version of all FOI responses will added to this Disclosure Log once they have been sent to requesters.