| 1.1 Portfolio
19 Named Data Online Service | |
|---|
| 1.1.19 Named Data Online Service: | | 1. NDOS is a compendium of disparative services for many similar purposes, including:- | | (1) Subject Access Request (SAR) by a business associate contact person who can be identified by name and recent trading transactions. | | (2) Contact Us Service by a business associate contact person who can be identified by name and recent trading transactions. | | (3) Complaint Handing Service by a business associate contact person who can be identified by name and recent trading transactions. | | (4) Problem Resolution Service by a business associate contact person who can be identified by name and recent trading transactions. | | (5) Business Message Servce (BMS) by a business associate contact person. | | (6) Company Information Servce (CIS) by any interested party. | | (7) Job and Career Servce by any prospective employees. | | 1. NDOS is an online receptionist working 24*7 for business associates to communicate with their Application Service Provider (ASP) without delay. |
| Online Self-Service: | | 1. NDOS is an online receptionist working 24*7 for business associates to communicate with their Application Service Provider (ASP) without delay. | | 2. ASP people working in different time zones are continually monitoring your messages that are instantly routed to the most appropriate who is on duty. | | 3. Messages are shared in an open and transparent way so all parties are always kept fully up to date with the state of the message. | | 4. With more than a decade of continual improvements, the majority of self-service requests can be instantly resolved without any further action. | | 5. People have the right to rapid self-service that is provided by the most efficient companies as a means of demonstrating their minimised cost of doing business. | | 6. The role of the NDOS receptionist is to ensure that real business associates are enabled to communicate 24*7 without delay while criminal attacks are stopped. |
| Phone Message: | | 1. As an alternative to the self-service NDOS facility, a business associate may phone 02084288366 and leave a voice message. | | 2. It is assumed that many phone calls will be phishing attacks so please make sure that the caller identifies themselves with information that could not be used by a criminal. | | 3. The receptionist will transcribe the voice message as a new NDOS message that can then be handled in the normal way. | | 4. The traditional delays of being put on hold and then switched between different people to try to find the correct person willing and able to deal with a request has been replaced with a one-step solution for every kind of message. | | 5. It is recommended that private, confidential and sensitive information is never communicated by phone because every communication shall be recorded and processed by agencies in many parts of the world. | | 6. It is recommended that personal opinions are never communicated by phone because an opinion expressed today may become unacceptable or illegal in the future by a different culture. | | 7. Not all ASP people have English as their first language so to minimise confusion or errors, written messages provide a shared evidence trail of what happened. |
| Email Message: | | 1. As an alternative to the self-service NDOS facility, a business associate may email support@ndos.co.uk with a written message. | | 2. It is assumed that many emails will be phishing attacks, unsolicited adverts or Spam so please make sure that the sender is identified with information that could not be used by a criminal. | | 3. The receptionist will transscribe the email message as a new business message with optional uploaded attachments that can then be handled in the normal way. | | 3. The traditional delays of sending an email to a named person who may be on leave is replaced with a shared business email address that is monitored every hour or so. | | 5. It is recommended that private, confidential and sensitive information is never communicated by email because every communication shall be copied and processed by agencies in many parts of the world. | | 6. It is recommended that personal opinions are never communicated by email because an opinion expressed today may become unacceptable or illegal in the future by a different culture. | | 7. Because no private, confidential or sensitive business information must ever be leaked by email, every email must be destroyed within a few hours of its arrival. |
| Contact Us: | | 1. A contact-us facility is provided so private, confidential or sensitive inforamtion can be communicated in a totally encrypted environment where data cannot be lost or stolen. Every email and phone call will be copied by many agencies in all parts of the world making it not fit for the purpose of communicating business information. | | 2. The person authoring the contact-us message is assigned an access code that will grant them the right to sign-in an engage in the dialogue resulting from the message. All information is shared in an open and transparent way between the author and the request fulfilment team who are charged to respond. The reply is expected to be posted within a few hours, but the current state of the message is continually kept up to date so all parties know what is happening. | | 3. ASP have a legal duty to provide this contact-us messaging service so people can ask the Data Protection Officer any question they may have about privacy. An expectation is that the Data Protection Officer will reply to any privacy query within 24 hours using the online message service. |
| Subject Access Request: (SAR) | | 1. Every person who is a business associate in any way has the right to submit a Subject Access Request. A person is called a "data Subject" and the SAR may request to access all Personally Identifiable Infomation (PII) that is stored about them. The person who has uniquely identified themselves can be assigned an access code and granted the right to sign-in to view their own information. | | 2. The person will be guided to sign in using their name, email address and access code. When they sign-in they are shown their own personal welcome page with links to all the different kinds of information that is stored about them. This includes read-only access to their history of SAR inforamtion, emails stored as business messages, voice messages stored as busienss messages and all associated data. | | 3. The person has the right to view their own PII, to change their PII, to download a copy of their PII and to delete any of their PII. The person has the right to view documentation such as the DPIA and a data dictionary of information stored with its purpose, life cycle, access rights and processing rights. The person does nto have the right to view business transactions, but in many cases, a read-only history of quotations and documents that have been communicated to the person will be shown. | | 4. Every customer and supplier contact person is encouraged to sign-in on a regular basis to verify that the information stored about them is kept up to date. The company has a legal duty to keep the information up to date and where this can be verified first hand by the person involved, then accuracy will be greater. |
| Complaint: | | 1. While expectations are that complaints will never happen, it is a legal duty to grant each person the right make a complaint or simply raise a concern for resolution. A contact-us type of application service is provided where a person may or may not identify themselves and add a message that should not be offensive. Where the person does not identify themselves, then they cannot get a personal reply and apology. | | 2. The person raising a complaint is encouraged to provide as must detail as possible including relevant attachments. A detailed evidence trail is kept of everything that happens, so the date and time of an event or incident will greatly assist in the analysis. Where the person involved identifies themselves, they will be assigned an access code so they can sign-in to follow up with shared information regarding the analysis and corrective action plan. The complaint data is shared in an open and transparent with the person making the complaint and all the people involved in conflict resolution, but all data is encrypted to ensure that it cannot be lost or stolen. |
| Information Service: | | 1. ASP publishes policies that can be shared with business associates and interested parties. ASP published procedures for approved people to follow when doing their job - these can be referenced at any time using any desktop, laptop. tablet or smart phone. | | 2. Many hundreds of documents are shared online without the need for a person to sign-in. Many thousands of documents are available online for approved people with the right to sign-in. | | 3. Information services are read-only documents that are refreshed every second to ensure that they have not been corrupted or defaced by a criminal or an 11 year old kid learning program scripting. It is not recommended that these documents are printed because they continually improve and paper documents are always an out of date liability. | | 4. Staff and consultants have rapid access to their project control and quality management documents with the guarantee that the documents are always fully up to date. Chinese walls are created between projects to ensure the confidentiality of every customer and client - names of people and companies shall never be disclosed within a project. | | 5. Customers and client have rapid access to their acount manager at any time of the day or night without concern that a person may be on leave or its the weekend. | | 6. Suppliers, vendors and providers have rapid access to the business to resolve a dispute at any time of the day or night without concern of who to call or finding out who is responsible. |
| Document Control: | | 1. Document Title: Named Data Online Service. | | 2. Reference: 161119. | | 3. Keywords: Named Data Online Service. Replicated Encrypted Ledger. | | 4. Description: NDOS subject access request, complaints, first level support and self-service support. | | 5. Privacy: ITIL public shared with all approved people. | | 6. Issued: 5 Jun 2017. | | 7. Edition: 1.2. |
|
|