Privacy Notice - Internal Audit & Investigations Team

Nature of work

The Council has a statutory responsibility to have audit arrangements in place as required by the Accounts and Audit Regulations 2011 and its role is to provide an independent appraisal of the Council’s internal control systems. This requirement is embodied in the Council’s Financial Regulations.

Internal Audit is an assurance function within the Resources Directorate that provides an independent and objective opinion to the organisation on the control environment, by evaluating its effectiveness in achieving the organisation’s objectives. It objectively examines, evaluates and reports on the adequacy of the control environment as a contribution to the proper, economic, efficient and effective use of resources.

The role of Internal Audit is to:

  1. Review, appraise and report on the adequacy and application of internal controls, the suitability and reliability of financial and other management data, including performance measurement, and the extent to which the Authority’s assets and interests are accounted for and safeguarded from loss;
  2. Support and encourage value for money, including lean initiatives, through improvements in the efficiency, economy and effectiveness of services;
  3. Investigate fraud, corruption and other irregularities, where appropriate;
  4. Lead on counter fraud measures through promotion of fraud awareness, undertaking proactive fraud reviews and ultimately assisting management to reduce fraud risks;
  5. Advise on internal control and risk implications to new and existing systems and projects.

Why we need your information

We need your information to fulfil our statutory duties and in particular for the prevention and investigation of fraud, corruption and other irregularities.

Type/Classes of information processed

We process a variety of information relating to individuals including:

  • personal details
  • family details
  • lifestyle and social circumstances
  • financial details
  • employment and education details
  • housing information
  • licensing information
  • surveillance information

Who information is processed about

Due to our responsibilities in relation to the prevention and detection of fraud and corruption we may process information about any:

  • residents of Solihull borough
  • service users in receipt of, or requesting, services from the Council
  • businesses located within the Solihull borough area
  • suppliers of good or services to the Council
  • employees of the Council
  • people/organisations interacting with any of the Council’s services

Who information may be shared with

Where necessary or required we share information with:

  • family, associates or representatives of the person whose personal data we are processing
  • other public sector organisations including the police

We also supply information to the Cabinet Office in accordance with legislative requirements to facilitate data matching for the prevention and detection of fraud and corruption. We also share data with other organisations to facilitate data matching for the prevention and detection of fraud and corruption.

How long we will keep your information

We retain information arising from investigations in accordance with the guidelines issued by the Department of Work and Pensions.  Other information is retained in accordance with our retention policy.

Transfers Overseas

Information may be transferred overseas but only where it relates to a specific investigation in respect of fraud and corruption and it is necessary in the context of the investigation.