1 / 11

Data Protection & Freedom of Information

Data Protection & Freedom of Information. The Practical Implications of Data Protection and Freedom of Information. Caroline Dominey Data Protection Officer. Overview. Data Protection Act Freedom of Information Act Practical advice on Records Management Q&A. Data Protection Act. Rights

donna-tran
Download Presentation

Data Protection & Freedom of Information

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Data Protection & Freedom of Information The Practical Implications of Data Protection and Freedom of Information Caroline Dominey Data Protection Officer

  2. Overview • Data Protection Act • Freedom of Information Act • Practical advice on Records Management • Q&A

  3. Data Protection Act • Rights • Informed of use of personal data • Incorrect personal data corrected • To access personal data • Prevent certain processing • Responsibilities • Register with Information Commissioner • Process Personal data legally in line with 8 principles.

  4. The Data Protection Principles • Processed fairly & lawfully. • Obtained only for specified & lawful purposes & not further processed in a manner incompatible with that purpose. • Adequate, relevant & not excessive. • Accurate & kept up to date. • Shall not be kept for longer than is necessary. • Processed in accordance with the rights of data subjects. • Protected against accidental loss, destruction or damage. • Personal data shall not be transferred outside the European Economic Area unless adequate protection exists.

  5. Freedom of Information • Rights • ‘Right to know’ • Responsibilities • Publication scheme (available at: www.ex.ac.uk/foi ) • Respond to other requests within 20 working days

  6. Data Protection Request for personal data 40 calendar days £10 maximum charge Data Protection Officer to respond Freedom of Information Other information Must be in writing, to any member of staff 20 working days Exemptions £450 fee limit Duty to offer advice and assistance Bias in favour of disclosure Requests for Information

  7. Records Management (1) • Security & Access • Confidentiality • Data Protection • Other Data • Security • Physical security • Restricted access

  8. Records Management (2) • Electronic Records • E-mails • Re-read before sending • Use the subject line sensibly • Cc & Bcc with care • File your e-mail • Deletion • Version control • Shared servers • Technology

  9. Records Management (3) • Destruction • Every copy? • Retention Schedule • Complete deletion?

  10. Summary • Data Protection, FOI and other laws regulate the way in which we manage Information • Simple RM practices can save time, energy and money • Generally it’s not until something goes wrong that RM becomes an issue.

  11. And finally… www.admin.ex.ac.uk/academic/datapro Caroline Dominey dataprotection@ex.ac.uk Ext: 3033

More Related