Skip to main content
The Judicial Administration Frontpage
The Judicial Administration Frontpage

The Judicial Administration

Information security policy

The information security policy of the Judicial Administration is formulated to ensure the security of information which is created, received or stored in the courts.

The courts' information systems contain sensitive and identifiable information which may not be used for purposes other than the activities of the courts.

Scope

This information security policy applies to the Judicial District Court, the Supreme Court of Iceland, the Court of Lands, the District Court of Reykjavík, the District Court of Reykjanes, the District Court of West Iceland, the District Court of the West Fjords, the District Court of North West Iceland, the District Court of North East Iceland, the District Court of East Iceland and the District Court of South Iceland. The policy also applies to service providers of the courts' information systems.

The information security policy covers the accession and storage of all data, irrespective of form, that are in the possession of the above-mentioned institutions.

This policy is binding on all employees of the courts, as well as all service providers handling the courts' records and systems. All these parties are obligated to protect the information and information systems of the courts in accordance with applicable law, rules set by the Judicial Administration and procedures.

Objectives

  • To preserve and maximise the security of the courts' information in an efficient manner, as well as to minimise operational risk and ensure continuous operation.

  • Confidential information is unavailable and secured against internal and external threats such as damage, destruction or disclosure, whether intentional or inadvertent.

  • Processing of data ensures that it is recorded and stored in a satisfactory manner to ensure that it is reliable, correct and available.

  • User access permissions are controlled in a formal and traceable manner.

  • Promote active safety awareness among employees and service providers through education and guidance.

  • Employees and service providers are encouraged to report irregularities, violations or suspicions of weaknesses in information security and thus contribute to continuous improvement.

Review

The Judicial Administration shall ensure that the information security policy of the courts is reviewed regularly. Following a review, the policy is updated and formally approved. The policy and possible changes to it are then presented to staff and partners, as well as published on the website of the Courts Administration.

Submitted to the Board of Directors and signed by the Director of the Judicial Administration.

Thus confirmed 29 January 2019

Ólöf Finnsdóttir

Director of the Court Administration