What does the Data Protection Act do

0
0
2540 days ago, 769 views
PowerPoint PPT Presentation
Preparing. The meaning of handling is exceptionally wide:ObtainingRecordingHoldingUsingErasureDestruction

Presentation Transcript

Slide 1

What does the Data Protection Act do? It sets gauges which must be fulfilled when acquiring, recording, holding, utilizing, revealing or discarding individual information Enter Organization Logo Here

Slide 2

Processing The meaning of handling is wide: Obtaining Recording Holding Using Erasure Destruction "Any operation" on the information Enter Organization Logo Here

Slide 3

Terminology Data Controller : a individual who (alone or together or just the same as different people) decides the reasons for which and the way in which any individual information are, or are to be, prepared Data Subject : a person who is the subject of individual information Enter Organization Logo Here

Slide 4

Personal information Personal information e.g. name, address, phone number Sensitive individual information Racial or ethnic cause Political sentiments/participation of exchange union Religious convictions Physical or Mental Health record Sexual life Alleged offenses/legitimate procedures Enter Organization Logo Here

Slide 5

Relevant Filing System The data must be organized to empower simple access to the data e.g. wellbeing records are regularly documented one after another in order or numerically, which implies that the record is effortlessly available. Illustrations: Card Index File masterminded one after another in order File with dividers Enter Organization Logo Here

Slide 6

The Data Protection Principles Processed reasonably and legitimately Processed for indicated purposes Adequate, applicable and not unreasonable Accurate and stayed up with the latest Not kept for longer than would normally be appropriate Processed as per the privileges of information subjects Protected by suitable security (functional and hierarchical) Not exchanged outside the EEA without sufficient assurance Enter Organization Logo Here

Slide 7

Principle 1 Processed decently and legitimately Data subject not misdirected or hoodwinked into giving the Data subject given fundamental data depicting who will prepare the information for what purpose(s) Schedules of conditions are fulfilled Explicit Consent/Informed Consent Lawful reason and custom-based law of confidentiality agreed to

Slide 8

Reasons for the handout Caldicott Management Audit We have to educate quiet/customers concerning the courses in which data is gathered about them and how it will be utilized Data Protection Act 1998 We are required by law to advise people about how their data is utilized and shared Displaying the flyer implies you are meeting these prerequisites

Slide 9

Principle 1 - Schedule 2 Conditions: The information subject has assented Processing is important for the execution of an agreement or pre contract steps Legal commitment of the information controller Vital interests of the information subject Administration of equity, by or under establishment, government office and so forth. Real interests of the information controller inasmuch as the rights and flexibilities or true blue interests of the information subject are not partial. Enter Organization Logo Here

Slide 10

Principle 1 - Schedule 3 Conditions: The information subject has given express assent The preparing is essential for any privilege or commitment regarding work Necessary to secure the crucial interests of the information subject or someone else Non-benefit making bodies Where the individual information has been made open by the information subject Legal procedures Medical purposes Enter Organization Logo Here

Slide 11

Principle 2 Processed for indicated purposes Review the reasons for your association Check your Notification Information mapping Ensure divulgences are legitimately dealt with Access to Health Records approach Compliance with data sharing rules/enactment Enter Organization Logo Here

Slide 12

Principle 3 Adequate, important and not exorbitant Apply great information administration rehearses – Only gather and keep the data you require Do not gather data "just in the event that it may be helpful one day!" Factual, clear and decipherable! Shortened forms! Enter Organization Logo Here

Slide 13

Principle 4 Accurate and stayed up with the latest Take mind contributing data Formal procedures to guarantee individual information is stayed up with the latest Enter Organization Logo Here

Slide 14

Principle 5 Not kept for longer than would normally be appropriate Ensure consistence with legitimate necessities and set up rules for maintenance periods For the Record HSC 1999/053 Review methodology for maintenance and transfer Safeguard the classification of individual information being obliterated Enter Organization Logo Here

Slide 15

Principle 6 Processed as per the privileges of information subjects Compensation Rectification/blocking/eradication Request an appraisal Subject get to Prevention of preparing Processing for direct advertising Automated basic leadership Enter Organization Logo Here

Slide 16

Principle 7 Protected by fitting security (down to earth and authoritative) Security: IT and non-specialized Controlling access to data Staff choice and preparing Ensuring business progression Detecting and managing breaks of security Confidentiality contracts with outsiders Enter Organization Logo Here

Slide 17

Principle 8 Not exchanged outside the EEA without sufficient insurance Beware of others without comparable assurance Contracts with outsider providers Internet sites Transfer of records Enter Organization Logo Here

Slide 18

Caldicott toolbox Caldicott Manual Training Courses Security Policy HSC 999/012 DPA: An Action Plan HSC 199/217 HSC 1998/064 For The Record Thesaurus HSJ Procedure Manual ESHA Directory HSC 1999/053 Data Protection Human Rights Act Presentations HSG (96) 18 Dictionary 2001 Diary 2000 Diary FIO Act

SPONSORS