Trevor Ellis Trainee Programmer (1981 – 28 years ago)

Slides:



Advertisements
Similar presentations
Identifying Data Protection Issues Developing Lifelong Learner Record Systems and ePortfolios in FE and HE: Planning for, and Coping with, Legal Issues.
Advertisements

Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.
Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
TEAM 4 Case Study Mauritius: Mrs Nandini Kissoon-Luckputtya
Archive, Records Management and Museum Services Confidentiality, Personal Data and the Data Protection Act 1998 Alan R Bell Records Manager and Information.
The Data Protection (Jersey) Law 2005.
Getting data sharing right for every child
Data Protection & Freedom of Information The Practical Implications of Data Protection and Freedom of Information Caroline Dominey Data Protection Officer.
1 Pertemuan 7 Points of Exposure Matakuliah:A0334/Pengendalian Lingkungan Online Tahun: 2005 Versi: 1/1.
University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
Data Protection for Church of Scotland Congregations
The Information Commissioner’s Office David Evans.
Health & Social Care Apprenticeships & Diploma
EHRs and the European Union – current legislation and future directions. Dr Richard Fitton.
Computers, the law and ethics  Lesson Objective: Understand some of the legal & ethical issues in developing computer systems  Learning Outcome: Know.
The Data Protection Act 1998 The Eight Principles.
Data Protection: An enabler? David Freeland, Senior Policy Officer 23 October 2014.
GEOG3025 Confidentiality and social implications.
Data Protection Act AS Module Heathcote Ch. 12.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
Processing personal health data: the regulator’s perspective Ken Macdonald Assistant Commissioner Information Commissioner’s Office.
What is personal data? Personal data is data about an individual which they consider to be private.
The Data Protection Act - Confidentiality and Associated Problems.
The Data Protection Act What Data is Held on Individuals? By institutions: –Criminal information, –Educational information; –Medical Information;
Local Government Reform and Compliance with the DPA Ken Macdonald Assistant Commissioner (Scotland & Northern Ireland) Information Commissioner’s Office.
Legal issues The Data Protection Act Legal issues What the Act covers The misuse of personal data By organizations and businesses.
Data Protection Property Management Conference. What’s it got to do with me ? As a member of a management committee responsible for Guiding property you.
The Data Protection Act What the Act covers The misuse of personal data by organisations and businesses.
Data Protection - Rights & Responsibilities Information Commissioner’s Office Orkney Practice Forum 4 th July 2007.
Data Protection Act The Data Protection Act (DPA) is a balance between rights of the DATA SUBJECT and obligations of the DATA CONTROLLER DATA CONTROLLER.
Computing, Ethics & The Law. The Law Copyright, Designs and Patents Act (1988) Computer Misuse Act (1990) Data Protection Act (1998) (8 Main Principles)
Data Protection and research Rachael Maguire Records Manager.
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
DATA PROTECTION ACT DATA PROTECTION ACT  Gives rights to data subjects (i.e. people who have data stored about them on a computer)  Information.
© University of Reading Lee Shailer 06 June 2016 Data Protection the basics.
Getting data sharing right for every child Maureen H Falconer Senior Policy Officer Information Commissioner’s Office.
Data protection—training materials [Name and details of speaker]
Uses of brain imaging data: privacy and governance implications Dr. Hester Ward Medical Director, Information Services Division, (ISD) Consultant in Public.
Presented by Ms. Teki Akuetteh LLM (IT and Telecom Law) 16/07/2013Data Protection Act, 2012: A call for Action1.
Clark Holt Limited (Co. No ), Hardwick House, Prospect Place, Swindon, SN1 3LJ Authorised and regulated by the Solicitors Regulation.
Data Protection and Freedom of Information. Objectives Describe the main points of the Data Protection Act 1998 and Freedom of Information Act 2000 Illustrate.
Introduction to Data Protection Plan »Brief Introduction to Data Protection  Example  Principles  P3, 4, 7  Sensitive Data  Conditions for Processing.
Data Protection Laws in the European Union John Armstrong CMS Cameron McKenna.
The Data Protection Act 1998
The Data Protection Act 1998
Making the Connection ISO Master Class An Overview.
CISI – Financial Products, Markets & Services
Level 2 Diploma in Customer Service
Privacy Impact Assessments (PIAs)
General Data Protection Regulation
Data Protection Act.
The Data Protection Act 1998
Data Protection Update – GDPR or bust
Data Protection Legislation
GDPR Overview GDPR - General Data Protection Regulations
EU Directive 95/46/EC (Paragraph 2) “Whereas data-processing systems are designed to serve man; whereas they must Respect their fundamental rights.
Data Protection & Freedom of Information- An Introduction
GENERAL DATA PROTECTION REGULATION (GDPR)
6 Principles of the GDPR and SQL Provision
G.D.P.R General Data Protection Regulations
General Data Protection Regulation
Data Protection principles
Identify the laws and guidelines that affect day-to-day use of IT.
General Data Protection Regulations 2018
What is the Data Protection Act (DPA)? 1998
Welcome IITA Inbound Insider Webinar: An Introduction to GDPR
Dr Elizabeth Lomas The General Data Protection Regulation (GDPR): Changing the data protection landscape Dr Elizabeth Lomas
Presentation transcript:

Trevor Ellis Trainee Programmer (1981 – 28 years ago) Contractor (since 1992 – for 17 years) …. and Master of None !

Data Protection Act 1998 European Directive 95/46/EC Protection of Individuals with Regard to the Processing of Personal Data and on the Free Movement of Such Data Data Protection Act 1998 Information Commissioner’s Office Data Protection Act Freedom of Information Act plus……

Information Commissioner’s Office Not Legal Advice ! Non-Expert I deny saying everything I wasn’t even here today Information Commissioner’s Office www.ico.gov.uk

Data Protection Act Includes rights for individuals re personal data processors register (notify) with the ICO processing must comply with 8 Principles Applies to computer, CCTV, some photographic, and many paper records

Only time for a couple…. What rights do individuals have? What is Personal Data? What are the Eight Principles? Who has to Register? Who is the responsible ‘Data Controller’? What is the affect on system testing? What impact of other legislation? Freedom of Information Act

What is Personal Data? Data that relates to an identifiable living individual (whether in personal or family life, business or profession)

Can a living individual be identified from the data itself Identifiable Can a living individual be identified from the data itself or from that data plus other available information reasonably likely to be available

Context is Everything Trevor Ellis  Trevor Ellis + EX15 3XX  An individual is 'identified' if you have distinguished that individual from other members of a group. Trevor Ellis  Trevor Ellis + EX15 3XX  .Net Dev Net member + EX15 3XX   

Context is Everything The ‘data’ may enable you to identify an individual whose name you do not know and may never intend to discover Photo of UWE that includes someone standing outside  Photo of shifty looking person standing outside UWE 

that processing must comply with… Eight Principles that processing must comply with… Processed Fairly Only for specified reasons Adequate and not excessive Accurate and up to date Not held longer than necessary In accordance with subject’s rights Kept safe Not transferred outside EU www.ico.gov.uk

* except with the explicit consent of the subject Principle 1 Personal data shall be processed fairly lawfully and only as necessary* * except with the explicit consent of the subject Necessary for the performance of a contract to which the data subject is a party or is seeking to be a party the data controller is subject to other legal obligations in order to protect the vital interests of the data subject (life and Death situations) Legal – limited by other regulations Duty of Confidentiality European Convention on Human Rights Legitimate expectation - as to how the data controller will use the information Fair Automated processing can be unfair where a program is of poor quality and does not operate as the data controller intended Where subject is deceived or misled as to the purpose for which the personal data are to be processed.

Principle 2 Personal data shall be obtained only for the specified purpose, and shall not be further processed in any manner incompatible with those purposes

Principle 3 Personal data shall be adequate, relevant and not excessive in relation to the purposes for which they are processed

Personal data shall be accurate and, where necessary, kept up to date Principle 4 Personal data shall be accurate and, where necessary, kept up to date

Principle 5 Personal data processed for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes

Principle 6 Personal data shall be processed in accordance with the rights of data subjects under this Act

Principle 7 (pt1) Appropriate technical measures shall be taken to protect personal data* * against unauthorised or unlawful processing, accidental loss or destruction, and damage

Principle 7 (pt2) Appropriate organisational measures shall be taken to protect personal data* * against unauthorised processing, accidental loss or destruction, and damage

* unless that country ensures the same level of protection Principle 8 Personal data shall not be transferred to outside the European Economic Area* * unless that country ensures the same level of protection

Summary – www.ico.gov.uk Eight Principles Processed Fairly Only for specified reasons Adequate and not excessive Accurate and up to date Not longer than necessary In accordance with subject’s rights Kept safe Not transferred outside EU

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.