6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 1 PRESENTATION OF PERSONAL DATA PROTECTION BILL PRESENTATION OF PERSONAL DATA PROTECTION BILL.

Slides:



Advertisements
Similar presentations
Introduction to basic principles of Regulation (EC) 45/2001 Sophie Louveaux María Verónica Pérez Asinari.
Advertisements

Data Protection Information Management / Jody McKenzie.
The Data Protection (Jersey) Law 2005.
Data Protection.
Data Protection and the GRA. 1. Commentary on Data Protection 2. The GRA’s Role The Register Investigations, Mediation and Compensation Enforcement Notices.
Data Protection & Freedom of Information The Practical Implications of Data Protection and Freedom of Information Caroline Dominey Data Protection Officer.
Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.
The role of the Office of the Privacy Commissioner in telecommunications Andrew Solomon Director, Policy.
Duncan Woodhouse – Assistant Registrar for Information Security, Risk Management and Business Continuity Helen Wollerton – Administrative Officer (Legal.
A European View of Privacy Protection John Woulds Director of Operations UK Data Protection Commissioner National Conference on Privacy, Technology & Criminal.
Personal Data Privacy and The Internet by Stephen Lau Privacy Commissioner for Personal Data, Hong Kong SAR at the Joint Conference of the OECD, HCOPIL,
Taking Steps to Protect Privacy A presentation to Hamilton-area Physiotherapy Managers by Bob Spence Communications Co-ordinator Office of the Ontario.
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Personal Data (Privacy) Ordinance Hong Kong Personal Data (Privacy) Ordinance Hong Kong by Stephen Lau Privacy Commissioner for Personal Data Hong Kong.
Data Protection Overview
Protecting information rights –­ advancing information policy Privacy law reform for APP entities (organisations)
The ICO and the DPA Ken Macdonald Assistant Commissioner Information Commissioner’s Office ScotStat Public Sector Analysts Network 30 th September 2010.
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
The Information Commissioner’s Office David Evans.
6th CACR Information Security Workshop 1st Annual Privacy and Security Workshop (November 10, 2000) Incorporating Privacy into the Security Domain: Issues.
Privacy Law for Network Administrators Steven Penney Faculty of Law University of New Brunswick.
EHRs and the European Union – current legislation and future directions. Dr Richard Fitton.
Privacy Codes of Conduct as a self- regulatory approach to cope with restrictions on transborder data flow Dr. Anja Miedbrodt Exemplified with the help.
Data Protection and You Your Rights & The Law Registration Basics Other Activities Disclaimer: This presentation only provides an introductory info. Please.
The Data Protection Act 1998 The Eight Principles.
OUTLINE Introduction Background of Securities Regulation Objective of Securities Regulation Violations under the Securities Industry Law The Securities.
1 Office of the Privacy Commissioner for Personal Data Hong Kong SAR Tony LAM Deputy Privacy Commissioner for Personal Data Asian Personal Data Privacy.
Managing Risks Associated With Privacy Alison Baker- Senior Associate Hall & Wilcox 24 November
Data Protection Act AS Module Heathcote Ch. 12.
IBT - Electronic Commerce Privacy Concerns Victor H. Bouganim WCL, American University.
Processing personal health data: the regulator’s perspective Ken Macdonald Assistant Commissioner Information Commissioner’s Office.
The right item, right place, right time. DLA Privacy Act Code of Fair Information Principles.
DATA PROTECTION ACT 1998 Became law on 1 March 2000 Only applies to the use of personal data, that is data which relates to an identifiable living individual,
The Data Protection Act What Data is Held on Individuals? By institutions: –Criminal information, –Educational information; –Medical Information;
Local Government Reform and Compliance with the DPA Ken Macdonald Assistant Commissioner (Scotland & Northern Ireland) Information Commissioner’s Office.
BC Public Libraries November, 2008 Privacy Principles.
Legal issues The Data Protection Act Legal issues What the Act covers The misuse of personal data By organizations and businesses.
Tad and Terry Legal Issues in ILP. 28 CFR Part 23 The federal rule that governs or provides guidance for these issues. § 23.3 Applicability: These policy.
The Data Protection Act What the Act covers The misuse of personal data by organisations and businesses.
Twelve Guiding Principles for the Regulation of Surveillance Camera Systems Presented by: Alastair Thomas Date: 23 rd October 2013.
Malcolm Crompton APEC Information Privacy Framework: review, impact, & progress APEC Symposium on Information Privacy Protection in E Government & E Commerce.
PROTECTION OF PERSONAL DATA. OECD GUIDELINES: BASIC PRINCIPLES OF NATIONAL APPLICATION Collection Limitation Principle There should be limits to the collection.
1 Office of the Privacy Commissioner for Personal Data Hong Kong SAR Tony LAM Deputy Privacy Commissioner for Personal Data Briefing to Asian Data Privacy.
Data Protection - Rights & Responsibilities Information Commissioner’s Office Orkney Practice Forum 4 th July 2007.
THE DATA PROTECTION ACT Data Protection Act 1998 DPA 1. Reasons2. People3. Principles 4. Exemptions 4 key points you need to learn/understand/revise.
INTRODUCTION TO DATA PROTECTION An overview of the Irish Data Protection legislation.
An Introduction to the Privacy Act Privacy Act 1993 Promotes and protects individual privacy Is concerned with the privacy of information about people.
Personal data protection in research projects
APEC Privacy Framework “The lack of consumer trust and confidence in the privacy and security of online transactions and information networks is one element.
GCSE ICT Data and you: The Data Protection Act. Loyalty cards Many companies use loyalty cards to encourage consumers to use their shops and services.
© University of Reading Lee Shailer 06 June 2016 Data Protection the basics.
Introduction to the Australian Privacy Principles & the OAIC’s regulatory approach Privacy Awareness Week 2016.
Data protection—training materials [Name and details of speaker]
Presented by Ms. Teki Akuetteh LLM (IT and Telecom Law) 16/07/2013Data Protection Act, 2012: A call for Action1.
Clark Holt Limited (Co. No ), Hardwick House, Prospect Place, Swindon, SN1 3LJ Authorised and regulated by the Solicitors Regulation.
The Data Protection Act 1998
The Data Protection Act 1998
Privacy principles Individual written policies
Issues of personal data protection in scientific research
APP entities (organisations)
The Data Protection Act 1998
Data Protection Legislation
Data Protection & Freedom of Information- An Introduction
G.D.P.R General Data Protection Regulations
Data Protection principles
Data Protection What’s new about The General Data Protection Regulation (GDPR) May 2018? Call Kerry on Or .
General Data Protection Regulations 2018
Legal Requirement on OHSC Complaints Management Presenter: Mr M Tlholoe Director Complaints Centre & Assessment Prepared for OHSC Consultative Workshops.
IAPP TRUSTe SYMPOSIUM 9-11 JUNE 2004
OHSC 2018 CONSULTATIVE WORKSHOP - GAUTENG PROVINCE ENFORCEMENT
Presentation transcript:

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 1 PRESENTATION OF PERSONAL DATA PROTECTION BILL PRESENTATION OF PERSONAL DATA PROTECTION BILL to Participants of the Asian Personal Data Privacy Forum 27 March 2001 Hong Kong

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 2 PERSONAL DATA PROTECTION BILL IIntroduction IIRationale of proposed legislation IIIObjectives and principles of proposed legislation IVMajor Provisions VIssues

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 3 I - INTRODUCTION äMalaysia is in the process of formulating PDP bill which äis one of the cyberlaws identified under MSC äwould assist in transforming Malaysia into a communications and multimedia hub äwould promote e-commerce by creating an environment of trust and confidence through personal data protection

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 4 I - CURRENT STATUS äDRAF BILL HAS BEEN FORMULATED  PRESENTED TO THE PUBLIC AND NGO ’ S FOR FEEDBACKS äCOMPILING THE FEEDBACKS AND TO PRESENT IT TO THE GOVERNMENT FOR CONSIDERATION

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 5 The personal data protection law is envisaged to be a world class leading edge cyberlaw that provides for higher level of personal data protection ä To provide a secure electronic environment in line with MSC objectives ä To create confidence among consumers and users of both network and non-network industries ä To accelerate uptake of e-based transactions II - RATIONALE OF PROPOSED LEGISLATION

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 6 III - OBJECTIVES AND PRINCIPLES OF PROPOSED LEGISLATION

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 7 OBJECTIVES OF LEGISLATION TO PROMOTE MALAYSIA AS (a) Communications and e-commerce hub where the national adoption of e-based transactions is high (b) A premier investment centre for the communications & multimedia industry. …. CONT.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 8 Cont …... (c) A premier test-bed for applications of information and communication technologies. (d) A preferred trading partner that provides international standards of personal data protection.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 9 PURPOSE OF THE ACT a) To regulate the collection, holding, processing and use of personal data by any person/organization so as to provide protection to an individual ’ s personal data and safeguard the privacy of an individual b) To establish a set of common rules and guidelines on handling and treatment of personal data by any person /organization

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 10 WHAT IS PROTECTED? PERSONAL DATA OF A LIVING INDIVIDUAL

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 11 WHO IS TO BE REGULATED? DATA USER –‘ DATA USER ’ MEANS - a) Any person/organization who collects, holds, processes or uses (automated or otherwise) any personal data of a data subject; b) Includes Government, Business Sector,NGOs and individuals

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 12 DATA PROTECTION PRINCIPLES 1.Manner of Collection of Personal Data 2.Purpose of Collection of Personal Data 3.Use of Personal Data 4.Disclosure of Personal Data

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 13 DATA PROTECTION PRINCIPLES 5.Accuracy of Personal Data 6.Duration of Retention of Personal Data 7.Access to and Correction of Personal Data

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 14 DATA PROTECTION PRINCIPLES 8.Security of Personal Data 9.Information to be Generally Available to Public

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 15 DATA PROTECTION PRINCIPLES PRINCIPLE 1 - MANNER OF COLLECTION OF PERSONAL DATA THE PERSONAL DATA SHALL BE COLLECTED FAIRLY AND LAWFULLY

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 16 PRINCIPLE 2 - PURPOSE OF COLLECTION OF PERSONAL DATA (1) PERSONAL DATA SHALL BE HELD ONLY FOR ONE OR MORE SPECIFIED AND LAWFUL PURPOSES. (2) PERSONAL DATA SHALL NOT BE COLLECTED UNLESS - (a) The personal data are collected for a lawful purpose directly related to a function or activity of the data user who is to use the personal data;

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 17 PRINCIPLE 2 - PURPOSE OF COLLECTION OF PERSONAL DATA (b) The collection of the data is necessary for or directly related to that purpose; and (c) The personal data are adequate, relevant but not excessive in relation to that purpose.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 18 PRINCIPLE 3 - USE OF PERSONAL DATA PRINCIPLE 3 - USE OF PERSONAL DATA PERSONAL DATA HELD FOR ANY PURPOSE SHALL NOT BE USED FOR OTHER THAN - The purposes for which the personal data were to be used at the time of the collection of the data

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 19 PRINCIPLE 4 - DISCLOSURE OF PERSONAL DATA PERSONAL DATA SHALL NOT BE DISCLOSED UNLESS - The disclosure of the personal data is done for the purposes in connection with which the personal data was obtained or is directly related to the purposes in connection with which the personal data was obtained

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 20 PRINCIPLE 5 - ACCURACY OF PERSONAL DATA Personal data shall be accurate, complete, relevant, not misleading and up-to-date, having regard to the purpose (including any directly related purpose) for such the personal data are or to be used.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 21 PRINCIPLE 6 - DURATION OF RETENTION OF PERSONAL DATA Personal data held for any purpose shall not be kept for longer than is necessary for that purpose.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 22 PRINCIPLE 7 - ACCESS TO AND CORRECTION OF PERSONAL DATA AN INDIVIDUAL SHALL BE ENTITLED: (a) To be informed by any data user whether he holds personal data of which that individual is the subject; (b) To have access to any such personal data; and WHERE APPROPRIATE, TO HAVE THE DATA CORRECTED.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 23 PRINCIPLE 8 - SECURITY OF PERSONAL DATA Appropriate security measures shall be taken against unauthorized or accidental access, processing or erasure to, alteration, disclosure or destruction of, personal data and against accidental loss or destruction of personal data.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 24 PRINCIPLE 9 - INFORMATION TO BE GENERALLY AVAILABLE TO PUBLIC ALL PRACTICABLE STEPS SHALL BE TAKEN TO ENSURE THAT A PERSON CAN - (a) ascertain a data user ’ s policies and practices in relation to personal data; (b) be informed of the kind of personal data held by a data user; and (c) be informed of the main purposes for which personal data held by a data user are or are to be used.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 25 IV. MAJOR PROVISIONS OF THE ACT 1)Powers and functions of Commissioner 2)Personal Data Protection Tribunal 4)Codes of Practice 5)Matching Procedure

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 26 Cont… 2. POWERS AND FUNCTIONS OF THE COMMISSIONER a) monitoring and supervising the compliance of the Act; b) promote awareness and understanding and compliance of the Act; c) promote the observance and compliance of the data protection principles; d) arrange the dissemination of information and giving opinion to the general public as to the operation of the Act;

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 27 e) hear complaints on the non-compliance of the act; f) encourage associations, etc. to prepare and comply with the code of practice; g) issue and approve code of practice; h) undertake research into implications of new technology to privacy; I) determine the classes of industry that must register with commissioner. Con ’ t..

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 28 2 (a) - ENFORCEMENT POWERS OF COMMISSIONER a) Power to Investigate b) Power to Seize and Search c) Power to Compound d) Power to Conduct Prosecution

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA TRIBUNAL ESTABLISHMENT OF A DATA PROTECTION TRIBUNAL –to hear appeals from any person aggrieved by the decision of the Commissioner

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA CODES OF PRACTICE 4. CODES OF PRACTICE While act defines general requirements, detailed operational requirements for different industries to be drawn up by industry/commissioner.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA MATCHING PROCEDURE NO MATCHING OF PERSONAL DATA IS ALLOWED UNLESS - a) Consent given by the -  Data subject;  Commissioner. b) The personal data belongs to a class of matching procedure specified in a notice issued by the commissioner  APPLICATION NEEDED Con’t…

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 32 V - ISSUES

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 33 ISSUE NO. 1 Should this legislation apply to the Government (CLAUSE 3)

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 34 ISSUE NO.2 Status of the Personal Data Protection Law I.E. WHETHER IT WILL SUPERCEDE OTHER LAWS

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 35 ISSUE NO 3 INDEPENDENCE OF REGULATORY AGENCY

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 36 ISSUE NO 4: EXEMPTIONS HOW MUCH EXEMPTIONS TO PROVIDE - Generally - Specific purposes

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 37 ISSUE NO 5: ALTERNATIVES TO PDP -Self-regulation & Sector Specific Regulation - “ Habeas Data ”

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 38 THANK YOU

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.