Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data Protection Information Management / Jody McKenzie.

Published byRandall Vipond Modified over 9 years ago

Similar presentations

Presentation on theme: "Data Protection Information Management / Jody McKenzie."— Presentation transcript:

1 Data Protection Information Management / Jody McKenzie

2 Structure of Input Background to the Data Protection Act
How the Act works What the Force does to comply with the Act What you should do to comply with the Act Other legislation you may encounter Scenarios

3 Data Protection - background
Data Protection Act 1984 based on European directive Sought to ensure that information on people held in computer databases was collected with their consent, held only for specific purposes and is not used to their detriment Assumption that information belongs to individual Focus on fairness to individual Superseded by Data Protection Act 1998

4 Data Protection Act 1998 – definitions (1)
Data = information (manual or electronic) Personal data = information about a living identifiable individual Includes expression of opinion or intentions towards that individual Sensitive personal data, eg commission of an offence, criminal proceedings, physical health, sexual life Data subject = identifiable individual

5 Data Protection Act 1998 – definitions (2)
Processing = anything done with the data, without limit Data controller = determines what data is collected and how it is processed Protection = data controller must act to protect data from unfair use

6 Data Protection Act 1998 – how it works (1)
Way in which personal data should be protected set out in eight principles: Processing must be fair (to data subject) and lawful Processing only for specified purposes – policing purposes and staff administration Data must be accurate, relevant, not excessive, up-to-date, held securely Data subjects have rights of access, of erasure of incorrect information, and of compensation, and to know how their data is being processed

7 Data Protection Act 1998 – how it works (2)
Exemptions exist from provisions of Act, eg national security, prevention and detection of crime, regulatory activity Each exemption relates to different sections of the Act If processing may breach principles, but you think an exemption may apply, seek advice before taking further action

8 Data Protection – Force compliance
Register with Information Commissioner – specifying purposes and recipients Produce policies and procedures – specifying how information is processed Agree information sharing protocols with partners Train staff in use / misuse of systems Audit use of systems and data quality Provide data subjects with access to their data Civil monetary penalties of up to £500,000

9 Data Protection – your responsibilities
Comply with standard operating procedures and information sharing protocols Record information accurately Use information only for policing or staff purposes Browsing is not permitted Take all precautions to keep information secure Verify identity of recipient to ensure they are entitled to receive data Respond promptly to audit requests

10 Data Protection – offences
Selling, or offering for sale, data improperly obtained Obtaining or disclosing data without the Chief Constable’s consent Procuring the disclosure to another person without the Chief Constable’s consent Criminal offences, unlimited fine in High Court Third most common complaint to Professional Standards

11 Other relevant legislation
Rights to privacy: Human Rights Act 1998, common law of confidentiality Rights to receive information: Freedom of Information (Scotland) Act 2002, Environmental Information (Scotland) Regulations 2004 Powers to disclose information: Police Act 1997, Protection of Vulnerable Groups (Scotland) Act 2007, Antisocial Behaviour (Scotland) Act 2004 Other information management offences: Computer Misuse Act 1990 Guidance for Police: Management of Police Information (MOPI), Police circular 4/07

12 Data Protection Act 1998 Questions?

13 Summary Record information accurately on Police systems
Only use information in connection with your employment Keep information secure, and dispose of it appropriately Do not disclose information unless confident it is in order to do so

14 Contacts Information Management Unit, Woodhill House
Iain Gray, Interim Head of Information Management Jody McKenzie, Compliance Manager

Download ppt "Data Protection Information Management / Jody McKenzie."

Similar presentations

Www.actnow.org.uk Ten things you should know about Data Protection Paul Simpkins Director, Act Now Training Ltd.

Ten things you should know about Data Protection Paul Simpkins Director, Act Now Training Ltd.
Www.dataprotection.gov.je The Data Protection (Jersey) Law 2005.

The Data Protection (Jersey) Law 2005.
Data Protection.

Data Protection.
What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.

What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.
6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 1 PRESENTATION OF PERSONAL DATA PROTECTION BILL PRESENTATION OF PERSONAL DATA PROTECTION BILL.

6/1/2015MINISTRY OF ENERGY, COMMUNICATIONS AND MULTIMEDIA 1 PRESENTATION OF PERSONAL DATA PROTECTION BILL PRESENTATION OF PERSONAL DATA PROTECTION BILL.
Data Protection and Records Management

Data Protection and Records Management
Higher Administration and IT Administrative Practices.

Higher Administration and IT Administrative Practices.
Www.oaic.gov.au Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.

Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.
University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.

University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.
Data Protection: The Law. EU & Irish Legislation Data Protection Directive 95/46/EC Electronic Privacy Directive 2002/58/EC EUROPOL etc Data Protection.

Data Protection: The Law. EU & Irish Legislation Data Protection Directive 95/46/EC Electronic Privacy Directive 2002/58/EC EUROPOL etc Data Protection.
Information Commissioner’s Office: data protection Judith Jones Senior Policy Officer Strategic Liaison – public security 16 November 2011.

Information Commissioner’s Office: data protection Judith Jones Senior Policy Officer Strategic Liaison – public security 16 November 2011.
DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales  2074 6677  2074 5626 

DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales   
Audiences NI Data Protection Workshop

Audiences NI Data Protection Workshop
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview

Data Protection Overview
Protecting information rights –­ advancing information policy Privacy law reform for APP entities (organisations)

Protecting information rights –­ advancing information policy Privacy law reform for APP entities (organisations)
The ICO and the DPA Ken Macdonald Assistant Commissioner Information Commissioner’s Office ScotStat Public Sector Analysts Network 30 th September 2010.

The ICO and the DPA Ken Macdonald Assistant Commissioner Information Commissioner’s Office ScotStat Public Sector Analysts Network 30 th September 2010.
FORCE INFORMATION MANAGEMENT. INFORMATION MANAGEMENT Aim: To provide students with an awareness of the Force Information Management and legislation that.

FORCE INFORMATION MANAGEMENT. INFORMATION MANAGEMENT Aim: To provide students with an awareness of the Force Information Management and legislation that.
1 OVERVIEW PRESENTATION FREEDOM OF INFORMATION (SCOTLAND) ACT 2002.

1 OVERVIEW PRESENTATION FREEDOM OF INFORMATION (SCOTLAND) ACT 2002.
Data Protection for Church of Scotland Congregations

Data Protection for Church of Scotland Congregations

Similar presentations

Ads by Google