Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data Protection Data Protection Acts 1988 & 2003 Directive 95/46/EC Privacy.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Data Protection Data Protection Acts 1988 & 2003 Directive 95/46/EC Privacy."— Presentation transcript:

1 Data Protection Data Protection Acts 1988 & 2003 Directive 95/46/EC Privacy

2 Privacy & Data Protection Seen by hundreds, noticed by none. Most people reasonably make this assumption; either that they are not noticed, or that any single observer can observe and harbour only discrete bits of information. Nissenbaum, H. (1998) Protecting privacy in an information age; the problem of privacy in public, Journal of Law & Philosophy Vol 17: 559-596 (Kluwer: Netherlands)

3 Main Principles Processing of data must be positively justified by satisfying one of a limited number of conditions Additional precautions for Sensitive Data Includes manual records Rights of the data Subject No restriction on the flow of personal data to OMS Additional precautions when transferring outside the EEA

4 Exclusions Security of the State Limited access to health records That which must be available by law (Co. Office; BMD (Births, Marriages and Deaths) ; Mortgages) Family household / recreational use Data Owner or processed outside the State Data processed wholly outside the state (unless it is for use in the State)

5 Obligations Must Register with the Commissioner Must observe the requirements of the Act Must comply with the duties it owes to the individuals about whom it holds personal data

6 Key obligations This leads to two key elements of compliance Information + DP Culture Control

7 Stages 1. Is registration required? 2. Apply for registration 3. Annual review

8 Maintaining compliance Admin Procedures Audits Control of DB contents

9 Complying with the principles Understanding the principles Understanding non-compliance Monitoring compliance

10 Understanding the principles 1. Obtain and processed fairly 2. Accurate and up to date 3. Only for specified and lawful purposes 4. Not disclosed except in accordance with 3

11 5. Adequate / relevant and not excessive in relation to the specified purposes 1 above 6. Keep or as long as necessary 7. Keep secure 8. Right of access

12 2003 Act EFS – Enforced Subject Access ADM - Automated Decision Making Manual Data

13 Subject Access rights Existence Access Rectification

14 Management Structure Structure Procedural framework Standard Form Exemptions Carry Out Search Any Other Individuals whose consent is required Send out the information Important ID Theft

15 Questions?

Download ppt "Data Protection Data Protection Acts 1988 & 2003 Directive 95/46/EC Privacy."

Similar presentations

Public Administration use of Social Networks - Data Protection Implications European Public Administration Network, Dublin Castle, 5 April 2013 Billy Hawkes.

Public Administration use of Social Networks - Data Protection Implications European Public Administration Network, Dublin Castle, 5 April 2013 Billy Hawkes.
Identifying Data Protection Issues Developing Lifelong Learner Record Systems and ePortfolios in FE and HE: Planning for, and Coping with, Legal Issues.

Identifying Data Protection Issues Developing Lifelong Learner Record Systems and ePortfolios in FE and HE: Planning for, and Coping with, Legal Issues.
Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.

Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.
Introduction to Information Governance (IG)

Introduction to Information Governance (IG)
Data Protection Information Management / Jody McKenzie.

Data Protection Information Management / Jody McKenzie.
Www.dataprotection.gov.je The Data Protection (Jersey) Law 2005.

The Data Protection (Jersey) Law 2005.
What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.

What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.
Data Protection & Freedom of Information The Practical Implications of Data Protection and Freedom of Information Caroline Dominey Data Protection Officer.

Data Protection & Freedom of Information The Practical Implications of Data Protection and Freedom of Information Caroline Dominey Data Protection Officer.
Data Protection and Records Management

Data Protection and Records Management
University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.

University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.
Data Protection: International. Data Protection: a Human Right Part of Right to Personal Privacy Personal Privacy : necessary in a Democratic Society.

Data Protection: International. Data Protection: a Human Right Part of Right to Personal Privacy Personal Privacy : necessary in a Democratic Society.
Www.nationalsmartcardproject.org.uk www.scnf.org.uk National Smartcard Project Work Package 8 – Information Law Report.

National Smartcard Project Work Package 8 – Information Law Report.
DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales  2074 6677  2074 5626 

DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales   
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview

Data Protection Overview
The Data Protection Act

The Data Protection Act
The ICO and the DPA Ken Macdonald Assistant Commissioner Information Commissioner’s Office ScotStat Public Sector Analysts Network 30 th September 2010.

The ICO and the DPA Ken Macdonald Assistant Commissioner Information Commissioner’s Office ScotStat Public Sector Analysts Network 30 th September 2010.
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.

 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
Data Protection for Church of Scotland Congregations

Data Protection for Church of Scotland Congregations
Implementation of Security and Confidentiality in GP Practices.

Implementation of Security and Confidentiality in GP Practices.

Similar presentations

Ads by Google