Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Data Protection Act

Published byAlice Conley Modified over 9 years ago

Similar presentations

Presentation on theme: "The Data Protection Act"— Presentation transcript:

1 The Data Protection Act

2 Why does it exist? Organisations have always kept information about people. The Data Protection Act was in part enacted because of the impact of computer systems.

3 Why does it exist? (cont’d)
Computers make it easy to copy information Computers make it easy to distribute information Computers make it easy to gather information from different sources in one place

4 What is it for? (cont’d) Not all computer systems are secure
This can allow unauthorised access and the possibility of misuse The Act was brought in to prevent the misuse of personal data

5 The 1998 Act Covers information or data - stored on a computer or an organised paper filing system, about living people. It established the role of the Information Commissioner All organisations holding personal data must be registered with the Information Commissioner and abide by the laws laid out in the act

6 Personal Data The act sets up two types of personal data:
name address medical details banking details. Sensitive personal data: racial or ethnic origin political opinions- religion membership of a trade union Health sexual life criminal activity There are more safeguards about sensitive data than ordinary personal data.

7 Terms in the Act Some key terms are:
Data Subject - is someone who has data about them stored somewhere, outside their direct control. Data Controller - the person or organisation that stores personal data You will also need to remember the Eight Data Protection Principles…

8 Eight Data Protection Principles
Data should be processed fairly and lawfully. Data should be obtained for one or more specified lawful purposes. Data shall be adequate, relevant and not excessive. Data shall be accurate. Data is not kept longer than is necessary for its purpose. Data shall be processed in accordance with subject rights Appropriate measures shall be taken against unauthorised/unlawful processing, loss, destruction, damage to personal data. Data must not be transferred to countries which do not provide adequate protection

9 Data Subject Rights Access A data subject has a right to be supplied by a data controller with the personal data held about him or her. Prevent Distress A data subject may prevent the use of information if it would be likely to cause them distress. Prevent Direct Marketing A data subject may stop their data being used in attempts to sell them things (e.g. by junk mail or cold telephone calls.) To be informed about mechanics of automated decision taking process that will significantly affect them Prevent Automatic Decisions A data subject may specify that they do not want a data controller to make "automated" decisions about them To take action for compensation if they suffer damage by any contravention of the Act To take action to rectify, block, erase or destroy inaccurate data To request the Commissioner to assess whether any provision of the Act has been contravened

10 Exemptions Exemptions into one of two types: Complete Partial

11 Complete Exemptions 1. Personal data held for domestic purposes only at home, e.g. a list of your friends' names, birthdays and addresses does not have to keep to the rules. 2. Any personal data that is held for a national security reason is not covered. So MI5 or MI6 don't have to follow the rules. They do need to get a Government Minister to sign a certificate saying that they are exempt.

12 Partial Exemptions The taxman or police do not have to disclose information held or processed to prevent crime or taxation fraud. A data subject has no right to see information stored about them if it is to do with their health. A school pupil has no right of access to personal files, or to exam results before publication. A data controller can keep data for any length of time if it is being used for statistical, historical or research purposes. Some research by journalists and academics is exempt if it is in the public interest or does not identify individuals. Employment references written by a previous employer are exempt. Planning information about staff in a company is exempt, as it may damage the business to disclose it.

13 Something to think about…
The school cleaner notices that her personal details are visible on a secretary’s computer screen after the secretary has gone home. Her telephone number is recorded incorrectly and her address is out of date. Why should the cleaner concerned about this? How has the Data Protection Act been contravened?

14 References BBC Bitesize
Information Commissioner Letts Education Loughborough University

15 Glossary Data Protection Act - A law designed to protect personal data stored on computer. Information Commissioner - The official who supervises the enforcement of the Data Protection Act. data controller - The person or organisation that stores personal data. data subject - The person about whom data is stored. personal data - Information about a particular person.

Download ppt "The Data Protection Act"

Similar presentations

Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.

Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.
Www.dataprotection.gov.je The Data Protection (Jersey) Law 2005.

The Data Protection (Jersey) Law 2005.
Legislation & ICT By Savannah Inkster. By Savannah Computer Laws 1.Data Protection ActData Protection Act 2.Computer Misuse ActComputer Misuse Act 3.Copyright,

Legislation & ICT By Savannah Inkster. By Savannah Computer Laws 1.Data Protection ActData Protection Act 2.Computer Misuse ActComputer Misuse Act 3.Copyright,
What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.

What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.
Legislation in ICT.

Legislation in ICT.
University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.

University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.
Legislation in ICT. Data Protection Act (1998) What is the Data Protection Act (1998) and why was it created? What are the eight principles of the Data.

Legislation in ICT. Data Protection Act (1998) What is the Data Protection Act (1998) and why was it created? What are the eight principles of the Data.
Data Protection Act.

Data Protection Act.
Data Protection Act 1998. Description The Data Protection Act controls how your personal information can be used and protects from the misuse of your.

Data Protection Act Description The Data Protection Act controls how your personal information can be used and protects from the misuse of your.
Audiences NI Data Protection Workshop

Audiences NI Data Protection Workshop
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview

Data Protection Overview
Data Protection Act. Lesson Objectives To understand the data protection act.

Data Protection Act. Lesson Objectives To understand the data protection act.
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.

 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
The Legal Framework Can you work out which slide each bullet point should go on?!

The Legal Framework Can you work out which slide each bullet point should go on?!
Data Protection for Church of Scotland Congregations

Data Protection for Church of Scotland Congregations
CENTRAL SCOTLAND POLICE Data Protection & Information Security Stuart Macfarlane Information Governance Unit Police Service of Scotland.

CENTRAL SCOTLAND POLICE Data Protection & Information Security Stuart Macfarlane Information Governance Unit Police Service of Scotland.
Regulation of Personal Information Daniel Pettitt, Leon Sewell and Matthew Pallot.

Regulation of Personal Information Daniel Pettitt, Leon Sewell and Matthew Pallot.
1 AQA ICT AS Level © Nelson Thornes 2008 1 Data Protection Act.

1 AQA ICT AS Level © Nelson Thornes Data Protection Act.
Health & Social Care Apprenticeships & Diploma

Health & Social Care Apprenticeships & Diploma

Similar presentations

Ads by Google