What is Data Protection?
The Data Protection (DP) Act was introduced in Ireland in 1988 to regulate the use of automated records (i.e. records on computer or records created and held with the intention of putting them on computer). The Act was amended in 2003 and the scope was extended to include manual records.
The Acts are concerned with personal data only and the definition is:-
“…data relating to a living individual who is or can be identified either from the data or from the data in conjunction with other information that is in, or is likely to come into, the possession of the data controller.”
All organizations holding and using (processing) personal data have a responsibility to comply with the eight principles of Data Protection. These state that you must:-
• Obtain and process information fairly
• Keep it only for one or more specified, explicit and lawful purposes
• Use and disclose it only in ways compatible with these purposes
• Keep it safe and secure
• Keep it accurate, complete and up-to-date
• Ensure that it is adequate, relevant and not excessive
• Retain it for no longer than is necessary for the purpose or purposes
• Give a copy of his/her personal data to an individual, on request
All organizations processing personal data must register
with the Data Protection Commissioner’s office and comply with the requirements
of the Act. For more information about
the Acts and our services, please contact us.
Further information is available at www.dataprotection.ie