Media release: Follow-up audit report – Council of the City of Gold Coast - June 2018

Queensland’s Office of the Information Commissioner’s follow-up audit report of Council of the City of Gold Coast was tabled in Parliament today (12 June 2018).

This report presents our findings on the council’s progress in implementing the 14 recommendations of our 2015-16 review of compliance with the Right to Information Act 2009 (Qld) and the Information Privacy Act 2009 (Qld).

The Council of the City of Gold Coast has fully implemented eleven recommendations, is progressing the implementation of two other recommendations and has partially implemented the remaining recommendation.

The Information Commissioner Rachael Rangihaeata said, “I was pleased to note that the Council of the City of Gold Coast has introduced new systems and procedures to address the recommendations I made in 2015-16. However, it needs to embed these systems to fully realise their benefits.”

“This will ensure the council is able to meet its right to information and information privacy obligations more efficiently and effectively.”

Key findings:

We assessed eleven recommendations as fully implemented because of the work the council has done since our original review. More specifically it has:

  • made significant efforts to improve its stakeholder and community engagement
  • established a forum called ‘Operational Risk and Compliance Meeting’ that is responsible for monitoring performance of the council’s right to information and privacy function
  • implemented, and is monitoring, specific strategic and operational performance measures for right to information and information privacy
  • implemented consistent procedures for business units to assess their own documents for release on the publication scheme.

The council is training its staff in right to information and has increased the visibility of its available training resources.

The council is also developing standards, processes and guidelines to support a new Information Management Framework it adopted in June 2017. The framework identifies the key components of information governance and their risk.

We assessed three recommendations as in progress or partially implemented. This is because the council is transitioning to new systems such as:

  • its Information Security Policy, including assessing the information assets classified as ‘public’ for suitability for release
  • a new case management system for processing formal applications under the Right to Information Act 2009 and Information Privacy Act 2009
  • an update to its internet privacy page to include a new generic collection notice.

Together, these improvements demonstrate the council has made progress in implementing the recommendations and build on its commitment to openness and transparency.

Read the full report here

Media contact: Steve Haigh, Manager Training and Stakeholder Relations
Phone: (07) 3234 7373