Data Protection Information Management / Jody McKenzie.

Slides:



Advertisements
Similar presentations
Ten things you should know about Data Protection Paul Simpkins Director, Act Now Training Ltd.
Advertisements

The Data Protection (Jersey) Law 2005.
Data Protection.
What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.
6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 1 PRESENTATION OF PERSONAL DATA PROTECTION BILL PRESENTATION OF PERSONAL DATA PROTECTION BILL.
Data Protection and Records Management
Higher Administration and IT Administrative Practices.
Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.
University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.
Data Protection: The Law. EU & Irish Legislation Data Protection Directive 95/46/EC Electronic Privacy Directive 2002/58/EC EUROPOL etc Data Protection.
Information Commissioner’s Office: data protection Judith Jones Senior Policy Officer Strategic Liaison – public security 16 November 2011.
DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales   
Audiences NI Data Protection Workshop
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview
Protecting information rights –­ advancing information policy Privacy law reform for APP entities (organisations)
The ICO and the DPA Ken Macdonald Assistant Commissioner Information Commissioner’s Office ScotStat Public Sector Analysts Network 30 th September 2010.
FORCE INFORMATION MANAGEMENT. INFORMATION MANAGEMENT Aim: To provide students with an awareness of the Force Information Management and legislation that.
1 OVERVIEW PRESENTATION FREEDOM OF INFORMATION (SCOTLAND) ACT 2002.
Data Protection for Church of Scotland Congregations
CENTRAL SCOTLAND POLICE Data Protection & Information Security Stuart Macfarlane Information Governance Unit Police Service of Scotland.
Privacy Law for Network Administrators Steven Penney Faculty of Law University of New Brunswick.
Data Protection and You Your Rights & The Law Registration Basics Other Activities Disclaimer: This presentation only provides an introductory info. Please.
Data Protection & Law Enforcement Seán Sweeney Assistant Commissioner Office of the Data Protection Commissioner Ireland Gibraltar January 27 th 2006.
NOT PROTECTIVELY MARKED Data Protection Information Management & Information Security.
The Data Protection Act 1998 The Eight Principles.
The Freedom of Information and Data Protection Legislation An Overview Ann McKeon November 2014.
Data Protection: An enabler? David Freeland, Senior Policy Officer 23 October 2014.
Data Protection Act AS Module Heathcote Ch. 12.
Data Protection Act & Freedom of Information Simon Mansell Corporate Governance and Information Team.
Data Protection Corporate training Data Protection Act 1998 Replaces DPA 1994 EC directive 94/46/EC The Information Commissioner The courts.
Processing personal health data: the regulator’s perspective Ken Macdonald Assistant Commissioner Information Commissioner’s Office.
DATA PROTECTION ACT 1998 Became law on 1 March 2000 Only applies to the use of personal data, that is data which relates to an identifiable living individual,
The Data Protection Act What Data is Held on Individuals? By institutions: –Criminal information, –Educational information; –Medical Information;
BTEC ICT Legal Issues Data Protection Act (1998) Computer Misuse Act (1990) Freedom of Information Act (2000)
Local Government Reform and Compliance with the DPA Ken Macdonald Assistant Commissioner (Scotland & Northern Ireland) Information Commissioner’s Office.
Data Protection for Church of Scotland Congregations.
PROTECTION OF PERSONAL DATA. OECD GUIDELINES: BASIC PRINCIPLES OF NATIONAL APPLICATION Collection Limitation Principle There should be limits to the collection.
12/12/2015 Data Protection Act /12/2015 The DP Act A law that protects personal privacy and upholds individual’s rights Anyone who handles personal.
Introduction Data protection is relevant to every individual, business or organisation today, not just Local Government. As well as protecting privacy,
Data Protection - Rights & Responsibilities Information Commissioner’s Office Orkney Practice Forum 4 th July 2007.
THE DATA PROTECTION ACT Data Protection Act 1998 DPA 1. Reasons2. People3. Principles 4. Exemptions 4 key points you need to learn/understand/revise.
LEGISLATION. DATA PROTECTION ACT (1998) The aim of this act give people the right to know what information is held about them. It also sets out rules.
Information Systems Unit 3.
An Introduction to the Privacy Act Privacy Act 1993 Promotes and protects individual privacy Is concerned with the privacy of information about people.
Data Protection Act (1998).
Data Protection in a Workplace Context. Layout of Presentation Background to Data Protection Role of Data Protection Commissioner Principles of Data Protection.
INFORMATION GOVERNANCE AND CONFIDENTIALITY Information Governance Facilitator.
DATA PROTECTION ACT INTRODUCTION The Data Protection Act 1998 came into force on the 1 st March It is more far reaching than its predecessor,
GCSE ICT Data and you: The Data Protection Act. Loyalty cards Many companies use loyalty cards to encourage consumers to use their shops and services.
Session 11 Data protection. 1 Contents Part 1: Introduction Part 2: Applicability and responsibility Part 3: Our procedures on data protection Part 4:
© University of Reading Lee Shailer 06 June 2016 Data Protection the basics.
Introduction to the Australian Privacy Principles & the OAIC’s regulatory approach Privacy Awareness Week 2016.
Workshop Understanding your responsibilities under the Data Protection Act 1998 and the Freedom of Information Act 2000 Adele Rhodes Girling.
Practical implications of the Data Protection Bill By John Robinson Data Protection Co-Ordinator South Bucks NHS Trust.
Presented by Ms. Teki Akuetteh LLM (IT and Telecom Law) 16/07/2013Data Protection Act, 2012: A call for Action1.
Clark Holt Limited (Co. No ), Hardwick House, Prospect Place, Swindon, SN1 3LJ Authorised and regulated by the Solicitors Regulation.
Data Protection Laws in the European Union John Armstrong CMS Cameron McKenna.
Students’ Unions 2011 Data Protection and Students’ Unions Mairead O’Reilly 19 July 2011.
Data Protection Act 1998 Presentation for Redbridge LSCB Board & Sub Group Members, 2017 provided by LB Redbridge Information Governance.
PowerPoint presentation
Data Protection: The Law
Data Protection Legislation
Data Protection & Freedom of Information- An Introduction
Data Protection: Your Rights as a Data Subject
Privacy & Access to Information
New Data Protection Legislation
Data Protection principles
Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .
General Data Protection Regulations 2018
Presentation transcript:

Data Protection Information Management / Jody McKenzie

Structure of Input Background to the Data Protection Act How the Act works What the Force does to comply with the Act What you should do to comply with the Act Other legislation you may encounter Scenarios

Data Protection - background Data Protection Act 1984 based on European directive Sought to ensure that information on people held in computer databases was collected with their consent, held only for specific purposes and is not used to their detriment Assumption that information belongs to individual Focus on fairness to individual Superseded by Data Protection Act 1998

Data Protection Act 1998 – definitions (1) Data = information (manual or electronic) Personal data = information about a living identifiable individual Includes expression of opinion or intentions towards that individual Sensitive personal data, eg commission of an offence, criminal proceedings, physical health, sexual life Data subject = identifiable individual

Data Protection Act 1998 – definitions (2) Processing = anything done with the data, without limit Data controller = determines what data is collected and how it is processed Protection = data controller must act to protect data from unfair use

Data Protection Act 1998 – how it works (1) Way in which personal data should be protected set out in eight principles: Processing must be fair (to data subject) and lawful Processing only for specified purposes – policing purposes and staff administration Data must be accurate, relevant, not excessive, up-to-date, held securely Data subjects have rights of access, of erasure of incorrect information, and of compensation, and to know how their data is being processed

Data Protection Act 1998 – how it works (2) Exemptions exist from provisions of Act, eg national security, prevention and detection of crime, regulatory activity Each exemption relates to different sections of the Act If processing may breach principles, but you think an exemption may apply, seek advice before taking further action

Data Protection – Force compliance Register with Information Commissioner – specifying purposes and recipients Produce policies and procedures – specifying how information is processed Agree information sharing protocols with partners Train staff in use / misuse of systems Audit use of systems and data quality Provide data subjects with access to their data Civil monetary penalties of up to £500,000

Data Protection – your responsibilities Comply with standard operating procedures and information sharing protocols Record information accurately Use information only for policing or staff purposes Browsing is not permitted Take all precautions to keep information secure Verify identity of recipient to ensure they are entitled to receive data Respond promptly to audit requests

Data Protection – offences Selling, or offering for sale, data improperly obtained Obtaining or disclosing data without the Chief Constable’s consent Procuring the disclosure to another person without the Chief Constable’s consent Criminal offences, unlimited fine in High Court Third most common complaint to Professional Standards

Other relevant legislation Rights to privacy: Human Rights Act 1998, common law of confidentiality Rights to receive information: Freedom of Information (Scotland) Act 2002, Environmental Information (Scotland) Regulations 2004 Powers to disclose information: Police Act 1997, Protection of Vulnerable Groups (Scotland) Act 2007, Antisocial Behaviour (Scotland) Act 2004 Other information management offences: Computer Misuse Act 1990 Guidance for Police: Management of Police Information (MOPI), Police circular 4/07

Data Protection Act 1998 Questions?

Summary Record information accurately on Police systems Only use information in connection with your employment Keep information secure, and dispose of it appropriately Do not disclose information unless confident it is in order to do so

Contacts Information Management Unit, Woodhill House Iain Gray, Interim Head of Information Management Jody McKenzie, Compliance Manager

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.