The Data Protection Act 1988 and 2003

The information defense Act 1988 and 2003Monika KaraliunaiteIntroductionPeople are exchanging, sharing and using selective information every day. entropy, meaning information that good deal be processed mechanically or manually. When it comes to Personal Data which is data relating to a human being who provoke be identified from the data, Data Protection becomes very important.The Data Protection Act 1988 and 2003 confer fulls on individuals as well as placing responsibilities on those persons touch personal data.Data SubjectData Subject or also called Data Receiver is a living individual to whom personal data relates. Data Protection Acts provide Subjects with certain rights, to enable them to check what data relating to themselves is being held and how or where it is used.The rights of data subjectsThe right to establish the existence of personal dataThe right of accessThe right of objectionThe right of rectificationThe rights come with responsibilities, it is not given to d ata subjects that they could make enquiries out of just simply being curious. instead so that they can check what data is being processed on them and whether it is correct.Ways for Data Subject to command rightsTick boxes online (to choose whether your information can be used for any other purpose)Unsubscribe (from notifications, information/offer e-mails etc.)Read term and conditions, when setting up accounts onlineAvoid to send e-mails containing confidential informationBCC- e-mailData Controller is the one who controls the content of personal data. It can be a legal entity like government department or a conjunction, or an individual say, sole trader or a General Practitioner. Data Controllers are recognised in the Data Protection Acts 1988 and 2003 as having certain responsibilities oblige on them by law.The responsibilities of Data ControllerEnsuring that data is obtained lawfullyThat it is used for the purposeThat it is kept safe and secureIt is accurate and up to dateThat it is relevantThat it is not disclosed or used for unlawful purposesThat it is not stored longer than necessary and provided to the subject on requestAll data controllers must keep an eye on with the rules/ responsibilities above, and some data controllers are obliged to register annually with the Data Protection Commissioner, to make evident their data handling procedures.How Data Controller ensure the responsibilities are carried out and organisations responsibilitiesData Controller must make himself aware of his responsibilities relating to Data Protection. Within organization, the staff should also be made aware of their responsibilities and let induction training should be given. Internal data protection policy, relevant to the personal data held by the organisation can be put to place, uncommitted to the staff. Policy reflective to the elementary data protection rules, applied to the organisation. It can then be enforced through consistent reviews and management.Data Proce ssorData Processor is someone who processes data on behalf data controller. It does not include someone who is an employee of data controller and processed the data during his employment. It is rather a supplementary company contacted by the data controller to manage or process data on its behalf, such asPayroll CompaniesTax advisersAccountantsData Protection CommissionerData Protection Commissioner is a sole person who enforces Data Protection Act and its compliance. He can investigate any complaints concerning data protection breech, prove codes of practice and maintains a register of data controllers.There have been cases when supermarkets have passed on their customers data to other companies.When using loyalty cards at supermarkets, we automatically let the company to gather the information about us without even thinking much of it. Usually to avail of the loyalty card a questionnaire or an application form needs to be filled, so we are passing on some of our personal details to the company, therefore become the Data Subject. The company now the Data Controller holds some of our information, and with the help of a loyalty card can continue gather information such as log of purchases.Coming to the point, there have been cases when consumers of a supermarket have been contacted by formula company, by e-mail, advertising and offering their product. Passing on personal information is considered a noncompliance with Data Protection Act.www.dataprotection.iewww.ictlaw.com