Responding to Freedom of Information (FOI) Requests: Best Practices for Public Sector Suppliers

Freedom of Information (FOI) requests play a crucial role in maintaining transparency and accountability in the public sector. As a supplier to public authorities, understanding how to handle these requests is essential for compliance and building public trust.

View Summary Get Full Report

Legal Framework and Background

1

1960s-1970s

Campaigners push for more openness in government

2

2000

Freedom of Information Act passed

3

2005

FOI Act comes into full force, giving people the right to request information from public bodies

4

Present

Ongoing updates to keep up with changes in technology and society

Public Authorities and Their Responsibilities

Defining Public Authorities

Bodies listed in Schedule 1 or designated by order under section 5 of the FOI Act, including government departments, local councils, and schools.

Key Duties

Respond to requests promptly within 20 working days, provide advice and assistance, confirm or deny information held, and explain any refusal to disclose.

Publication Schemes

Adopt and maintain a scheme outlining types of information routinely made available to the public.

Charging Fees

Most requests are free. Charges may apply if costs exceed £450 for central government or £600 for other authorities. Inform requesters of fees in advance.

Timeframe for Response

Respond promptly within 20 working days from receipt. Start gathering information immediately and keep requesters updated.

Recognition and Logging

Identify and log requests quickly, including date received, requester details, information requested, and due date.

Handling FOI Requests

Exemptions and Refusal Notices

Issuing Refusal Notices

When refusing a request, send a written notice citing the specific exemption, explaining its application, and including public interest test details for qualified exemptions. Inform requesters of their right to complain to the ICO.

Types of Exemptions

Absolute exemptions apply to highly sensitive information like national security data. Qualified exemptions require a public interest test and cover areas like commercial interests and policy formulation.

Data Protection and Personal Information

Regular Reviews

Conduct regular reviews of data handling practices to ensure compliance with both FOI and data protection requirements.

Balancing FOI and Data Protection

Assess if disclosing personal data is lawful under data protection legislation. Consider redacting personal details before release.

Handling Personal Information Requests

Treat requests for one's own data as subject access requests under data protection laws. Verify identity, provide copies of information held, and explain data usage within one month.

Environmental Information and Regulations

Comprehensive Environmental Coverage

Encompasses detailed information about air quality, water resources, soil composition, land use patterns, and their complex interactions with flora, fauna, and human populations

Multiple Information Formats

Environmental data available through diverse formats including written reports, visual documentation, digital maps, and recorded audio materials to ensure accessibility

Mandatory Public Disclosure

Public authorities are legally required to actively publish and regularly update environmental information without waiting for formal requests

Relationship with the Public

Strong relationships with the public require a systematic approach, starting with a foundation of trust and building up through transparent operations, active engagement, and ongoing improvements based on public feedback. Each level reinforces the others to create sustainable, positive public partnerships.

Trust

Building credibility through consistent, reliable service delivery

Transparency

Clear documentation and timely updates on all processes

Engagement

Active dialogue through consultations and feedback channels

Continuous Improvement

Data-driven refinement of public service delivery

Managing Vexatious and Complex Requests

Handling Complex Requests

Implement a structured approach to managing intricate requests by first conducting an initial scope assessment. Establish cross-functional teams with subject matter experts, create detailed project plans with specific milestones, and utilize advanced search and document management systems. Maintain transparent communication with requesters through regular status updates and clearly explain any necessary timeline extensions or clarifications needed.

Identifying Vexatious Requests

Evaluate requests systematically using established criteria such as frequency of contact, tone of correspondence, and reasonableness of demands. Consider the cumulative effect on organizational resources, including staff time and operational impact. Document all interactions thoroughly and maintain professional objectivity when determining if a request qualifies as vexatious under FOI legislation.

Training and Resources

Staff Education

Comprehensive training programs on FOI legislation, compliance requirements, and request handling procedures

Resource Access

Extensive library of Information Commissioner's Office (ICO) guidelines, standardized response templates, and decision-making frameworks

Practical Exercises

Hands-on workshops featuring real-world scenarios and interactive case studies to develop practical request management skills

Networking

Active participation in professional communities and cross-sector forums to exchange innovative approaches and lessons learned

Frequently Asked Questions

Key insights into Freedom of Information (FOI) requests for public sector suppliers.

What constitutes a valid Freedom of Information request?

A valid FOI request must be written, include the requester's contact details, and clearly describe the desired information. It can be sent via email, letter, or social media, and doesn't require explicit mention of the FOI Act.

Which exemptions might apply to a Freedom of Information Act request in the UK?

The FOI Act allows withholding information under certain exemptions like national security, commercial interests, and personal data. Public authorities must carefully consider each exemption, with some being absolute and others subject to public interest tests.

Can individuals request the reasons behind a Freedom of Information request?

No. Requesters are not required to explain their motives, and public bodies cannot refuse requests based on this.

How should public sector suppliers respond to an FOI request?

Determine if the requested information is held. If available, provide it unless an exemption applies. If not, promptly inform the requester and forward to the appropriate authority if necessary.

Within what period must public bodies respond to Freedom of Information requests?

Responses are required within 20 working days. Extensions may be necessary for complex public interest considerations.

Are responses to Freedom of Information requests made publicly available?

Many public bodies publish FOI responses online to promote transparency, though this is not a legal requirement.