1 / 14

Data Protection in Gibraltar

Explore the Data Protection Ordinance 2004, duties of data controllers, key rights of data subjects, offenses, and more in this insightful seminar for the Business & Finance sectors.

earnests
Download Presentation

Data Protection in Gibraltar

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Data Protection in Gibraltar Government of Gibraltar Seminar for Business & Finance Sectors 24 January 2006

  2. Seminar Overview • What’s it all about? • DPO – The jargon • DPO – The main issues • Information sources • Sean Sweeney • Question time

  3. Data Protection Ordinance 2004 What’s it all about?

  4. What’s it all about? • “Surely it should be obvious to the dimmest executive that trust, that most valuable of economic assets, is easily destroyed and hugely expensive to restore – and that few things are more likely to destroy trust than a company letting sensitive personal data get into the wrong hands.” • The Economist Magazine, 25 June 2005“ • “The ability to guard customer data is the key to market value, which the board is responsible for on behalf of shareholders.” • Haim Mendelson, Stanford University Business School

  5. What’s it all about? • “My credit card number is 078999489 and my credit limit is £3,000 – and, by the way, my PIN number is 3981.” • “Last year the doctor prescribed me antidepressants.” • “Ten years ago I was fined £50 for being drunk and disorderly.” • “I owe the income tax department £50,000.”

  6. Key jargon (s2) • Personal data • Data subject • Data controller • Data processor • Processing

  7. What is covered by the DPO? (s3) • Applies to processing of personal data by automatic or manual means. • Does not apply to data kept only for personal purposes – eg a personal address book. • Applies to data held in Gibraltar by a company based outside of Gibraltar.

  8. Duties of Data Controllers • To gather, store and use personal data in accordance with the data protection principles. • To process personal data only in accordance with the Ordinance • To ensure that data subjects can exercise the rights set out in the Ordinance in accordance with the time limits set out in the ordinance. • To cooperate with the Data Protection Commissioner

  9. Key Rights of Data Subjects • Right to have data kept & used only in accordance with the DPO • Right of access • Right to rectification of data • Right to object to processing of data • Rights in relation to direct marketing • Right to not have decisions made solely on the basis automatic processing of data

  10. Offences, Regulation & the Courts • The Data Protection Commissioner (s21) • Enforcement (ss25-27) • The Data Protection Register (ss22 -24)

  11. E-mail • “For the purposes of this Ordinance any communication or notification which may be done in writing may be done by electronic means.” • - section 4 DPO

  12. Sources of Information • The Data Protection Ordinance 2004 • http://www.gibraltarlaws.gov.gi • GoG Data Protection brochures • http://www.gibraltar.gov.gi • The Gibraltar Data Protection Commissioner • http://www.gra.gi • The EU data protection website • http://europa.eu.int/comm/justice_home/fsj/privacy/ • The Irish data protection website • http://www.dataprotection.ie

  13. Consultation & Commencement

More Related