Corporate CCTV Policy - March 2026

In this section

1. Introduction
2. Objectives
3. Legislation
4. Responsibilities
5. Purchasing and Deployment of CCTV Cameras
6. Monitoring
7. CCTV Checks and Assurance
8. Viewing footage
9. Signage

4. Responsibilities

4.1. The Senior Information Risk Owner (SIRO)

4.1.1. The SIRO ensures the delivery of a corporate approach to the Council’s responsibilities arising from Protection of Freedoms Act 2012. They have strategic responsibility for the integrity and efficacy of the processes in place, which ensure compliance and in respect of all surveillance cameras operated by the Council.

4.1.2. The SIRO will ensure the publication of all Self-Assessment Templates (SATs) and Data Protection Impact Assessments (DPIAs) on the website and that these are reviewed on an annual basis.

4.1.3. The SIRO will lead on third-party certification to provide evidence of compliance with the Surveillance Camera Commissioner’s Code of Practice.

4.2. CCTV Single Point of Contact

4.2.1. The CCTV Single Point of Contact (SPOC) is responsible for overseeing all aspects related to surveillance cameras. They ensure that everyone involved in the use of CCTV systems is informed about current legislation and guidance relating to these systems. Information and contact details for the CCTV SPOC can be found on the Council's intranet.

4.3. Heads of Service

4.3.1. The overall responsibility for CCTV systems rests with the relevant Head of Service. This includes ensuring all relevant staff are appropriately trained and all systems are used in accordance with this policy.

4.3.2. Heads of Service will nominate a designated Service Lead CCTV Officer for CCTV who will liaise with the CCTV Operators of the system.

4.4. Service Lead CCTV Officers

4.4.1. Service Lead CCTV Officers will have oversight of all CCTV systems managed by the service and will be a central point of contact and offer advice in relation to queries from staff. They will be responsible for ensuring that Self Assessment Template (SATs) are in place for all systems, that the corporate Data Protection Impact Assessments (DPIAs) cover all systems and that these documents are reviewed on an annual basis and available for publication.

4.4.2. Service Lead officers will ensure that the necessary steps are taken before installing a new system or making changes to existing ones, including the completion of EOI and consultation. Please see CCTV section on the intranet for details.

4.4.3. The designated Service Lead Officer is responsible for the daily operation of each CCTV system. All systems and their respective officers will be listed in a register on the Council's CCTV intranet page, which must be regularly updated by the Lead Officers. This applies to third parties operating under the Council's direction.

4.4.4. The Service Lead Officer shall ensure that council officers involved in the operation of the CCTV system are trained in the use of the equipment and are aware of this policy and the procedures in place to manage CCTV systems at the council.

4.4.5. The Service Lead Officer should act as the first point of contact for all enquiries relevant to the CCTV system and should ensure that only authorised council officers are able to operate or view images.

4.4.6. The Service Lead Officer shall investigate any reported misuse of a CCTV system and report it immediately to the CCTV SPOC.

4.4.7. The Service Lead Officer shall ensure the CCTV system is operational and take steps to deal with any faults as appropriate.

4.4.8. Service Lead Officers will ensure that the necessary steps are taken before installing a new system or making changes to existing ones, including the completion of the EOI and consultation.

4.5. CCTV Operators

4.5.1. Council officers operating CCTV systems must comply with current legislation, this policy, guidelines, codes of practice, and local manuals. They must know the UK GDPR and DPA requirements and complete the Council's eLearning course on these regulations.

4.5.2. Council officers involved in the use of CCTV systems shall report any misuse to the Service Lead CCTV Officer and shall cooperate with any investigation. The Service Lead Officer shall report it immediately to the CCTV SPOC and investigate any reported misuse of a CCTV system.

4.5.3. Council officers operating CCTV systems shall be responsible for bringing any equipment faults to the Service Lead Officer’s attention immediately.

4.5.4. Several council owned CCTV systems are in premises occupied by third parties. In these cases, it is important that there is a clear understanding between the Council and the organisation(s) concerned as to who is responsible for each aspect of the CCTV system. This should be recorded and signed by both parties. A copy of this document should be given to the council’s CCTV SPOC.