Live Standards - National Standard Microsite

Newest A-Z

DDL search listings: NCSP Passwords standard V1.1
This Standard supports the principles set out in the National CSP, providing detailed guidance to those implementing and managing PDS & policing systems. This Standard applies to all passwords...

Standard |

Published: 01/04/2024
|
Authoring body: Police Digital Service

Standards; Physical & Environmental Security Management Standard
This Standard sets out the Physical and Environmental Security measures and considerations to be used within policing. This standard will outline key guidance and advice that should be acknowledged...

Standard |

Published: 01/03/2024
|
Authoring body: Police Digital Service (PDS)

Standards; Penetration testing and ITHC Guideline
This guidance describes approaches to delivering comprehensive Testing (using a range of attack types), penetration tests, to support security and risk compliance monitoring

Standard |

Published: 01/02/2024
|
Authoring body: PDS

Guidance; Covenant for Using Artificial Intelligence (AI) in Policing
The rapid growth of Artificial Intelligence (AI) within policing is unsurprising. The speed and accuracy that AI can bring to police processes make it an attractive way to deliver an effective and...

Standard |

Published: 01/09/2023
|
Authoring body: NPCC

Principles; Cyber System Management Standard v1.0
This standard defines the requirements which, when applied, will assist with the secure management of systems and networks. This standard adheres to the National Policing Community Security Policy...

Standard |

Published: 01/01/2024
|
Authoring body: Police Digital Service (PDS)

Standards; Tik Tok Standard
This standard provides direction on the use of TikTok across policing, in accordance with the latest guidance provided by the Cabinet Office.

Standard |

Published: 01/08/2023
|
Authoring body: Police Digital Service (PDS)

Standards; System Development Standard
This standard outlines the functions within the Secure By Design (SbD) process, aligned to project stages, to ensure a consistent approach to cyber security is achieved throughout a system’s...

Standard |

Published: 01/09/2023
|
Authoring body: Police Digital Service (PDS)

Standards; Security Management Standard v1.0
This standard describes the requirements to implement and maintain an effective cyber security management system as required by the National Policing Community Security Policy Framework....

Standard |

Published: 01/10/2023
|
Authoring body: Police Digital Service (PDS)

Principles; National Police Information Security Risk Management Risk Balance Case Template
The National Policing Information Security Risk Management Framework provides the foundations of risk management across policing in line with the Police Cyber Assurance Framework (PCAF). ...

Standard |

Published: 01/05/2023
|
Authoring body: The Police Digital Service

Reference Data / Templates; National Police Information Security Risk Management Guidance
The National Policing Information Security Risk Management Framework provides the foundations of risk management across policing in line with the Police Cyber Assurance Framework (PCAF). This...

Standard |

Published: 01/05/2023
|
Authoring body: The Police Digital Service

Standards; National Police Information Security Risk Management Framework
This framework is to ensure that all security risks are identified, assessed, and managed in accordance with best practice in order to facilitate improved governance. It is mandatory for all...

Standard |

Published: 01/05/2023
|
Authoring body: The Police Digital Service

Guidance; OVERSEAS IT ACCESS GUIDELINES
This guidance describes best practice risk management controls for accessing Policing ICT resources whilst abroad. It also describes the circumstances when forces can make a local decision or when...

Standard |

Published: 02/04/2023
|
Authoring body: Police Digital Service

Guidance; Password Standard v1 approved by NCPSB JAN 23
This standard supports the National Community System Policy System Access requirements with respect to defining requirements for the use and selection of a password / passphrase-based method of...

Standard |

Published: 26/01/2023
|
Authoring body: Police Digital Service

Standards; NPCC framework for use of video evidence v3.0
This document is relevant to all police non-specialist front-line staff and forensic unitsi who utilise video evidence and to bring clarity around activities relating to recovery, acquisition,...

Standard |

Published: 06/12/2022
|
Authoring body: NPCC

Standards; Digital Evidence Storage v3.0
This is intended as a high-level overview of the requirements for digital evidence storage in a multimedia context. Ratings follow the MoSCoW system of Must, Should, Could and Won’t. The...

Standard |

Published: 06/12/2022
|
Authoring body: NPCC

Standards; Open Referral UK Standards
Open Referral UK is an open data standard in use by Local Government. This standard establishes a consistent way of publishing and describing information for councils, to ensure the data...

Standard |

Published: 01/01/2019
|
Authoring body: Open Referral UK

Standards; Retention, Storage and Destruction of Materials and Records relating to Forensic Examination
The purpose of this document is to provide guidance on the retention, storage and destruction of forensic materials and their associated records retained by physical and digital Forensic...

Standard |

Published: 01/06/2021
|
Authoring body: National Police Chiefs Council (NPCC)

Guidance; UK Gov Cookie Cutter Data Science Project Template
This is a data science cookiecutter template for analytical, Python-, or Python and R-based projects within Her Majesty's Government, and wider public sector including policing, where it has been...

Standard |

Published: 20/07/2021
|
Authoring body: Office for National Statistics (ONS)

Reference Data / Templates; Open Source Software - Exploring the Risk (Good Practice Guide 38)
This guidance seeks to assist a range of IA professionals in exploring the risks associated with the use of Open Source Software (OSS) products. It does so by prompting a number of ‘whole...

Standard |

Published: 01/10/2015
|
Authoring body: Communications-Electronics Security Group (CESG) [HMG]

Guidance; Police National Database (PND) Interface Business and Technical Guidance for Data Providers v3.5.0
This document provides: • High level PND requirements • Overview of Data requirements • PND Message Schema design • Data transmission mechanisms • Data Scope • Overview of software resources...

Standard |

Published: 18/09/2020
|
Authoring body: Home Office

Guidance; Biometric Standards and Exchange Requirements for Home Office Partners and their Suppliers v3.04
The purpose of this document is to provide details of the biometric interchange and image standards that must be adhered to by Partner1 organisations and their Suppliers that need to communicate...

Standard |

Published: 01/07/2017
|
Authoring body: Home Office

Standards; National standards for compliance and audit of law enforcement ANPR
This document contains information on the auditing of ANPR systems, including audits of data standards, infrastructure, data access and management, and local systems.

Standard |

Published: 01/09/2020
|
Authoring body: Home Office

Standards; Automatic Number Plate Recognition Regulation 109 Supplier Specification (Version 2.2)
This document's aim is to clearly define to suppliers of in-car ANPR software the minimum requirements to meet Regulation 109 (as amended by the Vehicle Special Order - VSO) whilst at the same time...

Standard |

Published: 01/10/2021
|
Authoring body: Home Office

Standards; National ANPR Standards for Policing and Law Enforcement
These standards articulate the requirements with which the police and other Law Enforcement Agencies (LEA) must comply to access the National ANPR Capability (NAC). This document includes a...

Standard |

Published: 01/11/2020
|
Authoring body: Home Office

Standards; National ANPR Technical Standards
This document prescribes the technical specifications for data within the National ANPR Service (NAS). The information within this document is intended to support compliance and consistency in the...

Standard |

Published: 01/05/2021
|
Authoring body: Home Office

Standards; Digital Processing Notices (NPCC extraction of digital content from devices guidance)
These Digical Processing Notices (DPN) provide the basis for the minimum recommended level of information to be both captured and provided to victims, witnesses and suspects by police forces. These...

Standard |

Published: 25/10/2021
|
Authoring body: National Police Chiefs Council (NPCC)

Reference Data / Templates; National Standard for Incident Recording
This document contains the National Incident Category List (NICL) and the principles, guidance and definitions for the National Standard for Incident Recording (NSIR). NSIR was introduced...

Standard |

Published: 01/01/2011
|
Authoring body: National Police Improvement Agency (NPIA)

Principles; ALGOCARE - Algorithm assessment tool
ALGO-CARE has been created for policing to use as a decision-making framework for the deployment of algorithmic assessment tools in the policing context. This helps translate key public law...

Standard |

Published: 01/09/2018
|
Authoring body: Oswald Grace Urwin & Barnes

Principles; Police Assured Landing Zone (PALZ) Amazon Web Services (AWS) Blueprint
The AWS Police Assured Landing Zone (PALZ), is a set of configuration, code, security model and design decision rationale artefacts created specifically for policing workloads. The goal is to...

Standard |

Published: 01/06/2021
|
Authoring body: Amazon / Police Digital Service (PDS)

Reference Data / Templates; Frontline Digital Mobility - Laptop shells
A laptop shell is simply a laptop with no internal computing power, this is provided by connecting a smartphone to the laptop, which is then 'driven' by the keyboard, mouse and screen of the laptop...

Standard |

Published: 01/02/2020
|
Authoring body: Digital Policing Portfolio (DPP)

Guidance; Frontline Digital Mobility - Portable Power Banks
Portable power banks are a tried and tested peripheral. Advances continue to be made to make them faster, better and smaller. Yet there are many types of power banks available in the market place...

Standard |

Published: 01/02/2020
|
Authoring body: Digital Policing Portfolio (DPP)

Guidance; Frontline Digital Mobility - Portable Hotspots
Portable hotspots are a tried and tested peripheral. Advances continue to make them faster, better and smaller. There are many types of portable hotspots available in the market place with many...

Standard |

Published: 01/02/2020
|
Authoring body: Digital Policing Portfolio (DPP)

Guidance; Frontline Digital Mobility - Peripheral Keyboards
There are many types of keyboards available in the market place with many variances in terms of specification, features and of course price. This guidance explores these variances and makes...

Standard |

Published: 01/02/2020
|
Authoring body: Digital Policing Portfolio (DPP)

Guidance; Frontline Digital Mobility - Connection Types
This guidance will explore the main connection types used by frontline officers and staff, whilst making recommendations about security and appropriate use. This guideline focuses on...

Standard |

Published: 01/02/2020
|
Authoring body: Digital Policing Portfolio (DPP)

Guidance; Cyber Security: Supply chain security
Step 10 from the 10 steps to Cyber Security covers how and why it is sensible to collaborate with your suppliers and partners Most organisations rely upon suppliers to deliver products, systems,...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Cyber Security: Incident management
Step 9 from the 10 steps to Cyber Security covers how to plan your response to cyber incidents in advance. Incidents can have a huge impact on an organisation in terms of cost, productivity...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Cyber Security: Logging and monitoring
Step 8 from the 10 steps to Cyber Security covers how to design your systems to be able to detect and investigate incidents. Collecting logs is essential to understand how your systems are...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Cyber Security: Data security
Step 7 from the 10 steps to Cyber Security covers the need to protect data where it is vulnerable. Data needs to be protected from unauthorised access, modification, or deletion. This...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Cyber Security: Identity and access management
Step 6 from the 10 steps to Cyber Security covers how to control who and what can access your systems and data via identity and access management (IAM) Access to data, systems and services...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Cyber Security: Vulnerability management
Step 5 from the 10 steps to Cyber Security covers how to keep your systems protected throughout their lifecycle. The majority of cyber security incidents are the result of attackers...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Cyber Security: Architecture and configuration
Step 4 from the 10 steps to Cyber Security covers how to design, build and maintain systems securely. The technology and cyber security landscape is constantly evolving. To address this,...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Cyber Security: Asset management
Step 3 from the 10 steps to Cyber Security covers asset management, ensuring you know what data and systems you manage, and what business need they support. Asset management encompasses the...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Cyber Security: Engagement and training
Step 2 from the 10 steps to Cyber Security covers the engagement and training of members from your organisation. People should be at the heart of any cyber security strategy. Good security...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Cyber Security: Risk management
Step 1 from the 10 steps to Cyber Security covers the approach to risk management. Taking risks is a natural part of doing business. Risk management informs decisions so that the right balance of...

Standard |

Published: 11/05/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; BS 10008 Evidential Weight and Legal Admissibility of Electronic Information
This document outlines best practice for the implementation and operation of electronic information management systems, including the storage and transfer of information. It is designed to help you...

Standard |

Published: 01/01/2020
|
Authoring body: British Standards Institute (BSI)

Standards; ISO 17020:2012 Requirements for the operation of various types of bodies performing inspection (Crime Scene Investigation)
ISO 17020:2012 specifies requirements for the competence of bodies (including police forces) performing inspection and for the impartiality and consistency of their inspection activities, this...

Standard |

Published: 01/04/2012
|
Authoring body: International Standards Organisation (ISO)

Standards; Data Protection Manual
This manual has been produced by the NPCC Data Protection, Freedom of Information, information Sharing and Disclosure Portfolio Group on behalf of the NPCC. It is updated and adapted to reflect...

Standard |

Published: 01/03/2021
|
Authoring body: National Police Chiefs Council (NPCC)

Guidance; ISO 15489:2016 Data Records Management
ISO 15489 provides a framework for implementing records management systems - the lifecycle of records from creation through to disposal. Police forces can use this to inform internal records...

Standard |

Published: 01/04/2016
|
Authoring body: International Standards Organisation (ISO)

Standards; Minimum standards schedule for the Retention and Disposal of Police Records (2020 v4)
The NPCC Guidance on The Minimum Standards for the Retention and Disposal of Police records has been produced by the NPCC Records Management Working Group to assist police forces in their statutory...

Standard |

Published: 13/11/2020
|
Authoring body: National Police Chiefs Council (NPCC)

Standards; Publishing Accessible Documentation
There is a need under the Equality Act 2010 to ensure documents are readily available to users who have additional accessibility needs. This document explains how to publish accessible...

Standard |

Published: 01/07/2021
|
Authoring body: Government Digital Services (GDS) & Central Digital and Data Office (CDDO)

Guidance; National Policing Community Security Policy (5.7)
Please note this is an OFFICIAL-SENSITIVE document, to request access please use the 'Contact Us' tab to raise a general query National Police information, systems and networks must be safeguarded...

Standard |

Published: 13/05/2019
|
Authoring body: National Police Information Risk Management Team (NPIRMT)

Standards; Create and iterate an SPF record for email authentication
This document provides guidance on how to create and iterate a Sender Policy Framework record, which is a system of email authentication. SPF works by providing domain owners a way...

Standard |

Published: 02/07/2021
|
Authoring body: National Cyber Security Centre (NCSC)

Guidance; Police Approved Secure Facilities (PASF) security review checklist (v1.8)
Please note this is an OFFICIAL-SENSITIVE document, to request access please use the 'Contact Us' tab to raise a general query This checklist covers the range of security measures to be assessed...

Standard |

Published: 01/06/2020
|
Authoring body: National Police Information Risk Management Team (NPIRMT)

Reference Data / Templates; National Digital and Physical Evidence Retention Guidance
This document seeks to provide clarity and national guidance on the retention of both physical and digital evidence in order to provide policing with a framework to support a comprehensive physical...

Standard |

Published: 01/02/2021
|
Authoring body: National Police Chiefs Council (NPCC)

Guidance; Government Digital Service Standard
The GDS Service Standard provides 14 principles for all Government teams to use when creating public services.

Standard |

Published: 01/01/2019
|
Authoring body: Government Digital Services

Principles; ISO/IEC 27033-2:2012 IT Security techniques — Network security — Part 2: Guidelines for the design and implementation of network security
ISO 27033-2 gives guidelines to police forces on how to plan, design, implement and document effective network security. This standard was reviewed by the authoring body in 2018 and still...

Standard |

Published: 01/08/2012
|
Authoring body: International Standards Organisation (ISO)

Guidance; Video surveillance systems for use in security applications BS 62676
This document has been written by subject matter experts, together with many governmental organisations, test houses and equipment manufacturers to defined a common framework for video surveillance...

Standard |

Published: 01/05/2014
|
Authoring body: British Standards Institute (BSI)

Standards; Extraction of material from digital devices APP
This document sets out the obligations on the police under the Data Protection Act 2018 and how these interact with other relevant legislation and case law. It provides police officers and staff...

Standard |

Published: 01/05/2021
|
Authoring body: College of Policing (CoP)

Principles

Police Digital Service National Standards

Live Standards - National Standard Microsite

Knowledge Hub

Quick links

Partners

Contact us