Administering CJSM

Security Questions

Privacy - organisation administrators

CJSM is a service available to all legal practitioners working in the Criminal Justice System. It is the only Government accredited secure route for sending emails to Criminal Justice Organisations, including Crown and magistrates' courts, the CPS, police and the National Offender Management Service.

Users can use CJSM to electronically send information to other organisations and practitioners connected to the service, up to and including anything marked 'Restricted'. The system uses 128 bit encryption to make sure that it cannot be read by anyone other than your intended recipient.


What does 'RESTRICTED' mean?

This is a Government-wide term that is used to refer to sensitive information which, if it became widely available, could cause personal or financial harm.

The CJSM service can handle material up to and including anything marked RESTRICTED, or its equivalent in the non-Government Protective Marking System world, such as PRIVATE, COMMERCIAL IN CONFIDENCE, or COMPANY CONFIDENTIAL.

If information is marked as 'RESTRICTED,' care should be taken to ensure that it is handled and stored appropriately. As a rule of thumb, anything you receive through CJSM should be treated as RESTRICTED.


Keeping CJSM secure

To ensure that CJSM stays secure, we have developed a stringent set of guidelines for users of the CJSM service to follow, and organisation administrators play a vital part in ensuring that these guidelines are being adhered to.

As a general rule, CJSM should only be used for legitimate business purposes relating to the Criminal Justice System.

Organisations and individuals could have their CJSM account suspended or removed if:

  • They share their user account details or CJSM password with anyone else. Secretaries, PA's and clerks may be allowed to use the details on a user's behalf, but the user will remain responsible for what they do with it.
  • They allow strangers to enter areas of your premises where IT systems with access to CJSM are in use. Where this is unavoidable, all visitors must be escorted at all times.
  • They send confidential information to people who don't need to know it.

All users of CJSM are also required to abide by the relevant legislation pertaining to the sharing of information, including the Data Protection and Freedom of Information Acts.

In some exceptional circumstances, organisation administrators will be able to access other users' accounts. This is a privilege to help the smooth functioning of CJSM in the event of a user's serious illness, absence or death, and must not be abused.

See more details of our Exceptional Access policy.


Terms and Conditions

Before anyone can join the CJSM service, they also have to agree to our terms and conditions, which sets out in great detail the levels of security we expect them to maintain.

This ranges from ensuring that they have a hardware firewall installed, to making sure that strangers are accompanied at all times in areas where CJSM is being used.

Please note: all actions performed within the CJSM service are auditable, and may be closely monitored.