Data Protection
Every
week we look at different types of guidelines, which can be very useful to our
studies and practises.
This week is Data Protection.
The Data Protection Act or DPA is a United Kingdom Act of
Parliament which was passed in 1988. -
to control how personal information is used by organisations or
government bodies. It was introduced mainly to protect people and lay down the
rules about how data about people can be used.
The DPA applies to information or data stored on a
computer or an organised paper filing system about living people. (Not much I
can say about Leonardo – as its long since he passed away. Sometimes I doubt my
success story’s choice, but when I made it – seemed as the only right and truly
success of the all others.)
Organisations that do not adhere to the rules set out by DPA risk
prosecution by the Information Commissioner’s Office (ICO) where fines can
reach up to £500,000 and even imprisonment.
Everyone responsible for using data has to follow strict rules called ‘data protection principles’. They must make sure the information is:
http://www.legislation.gov.uk/ukpga/1998/29/contents
https://www.gov.uk/data-protection
______________________________________
Everyone responsible for using data has to follow strict rules called ‘data protection principles’. They must make sure the information is:
· used
fairly and lawfully
· used
for limited, specifically stated purposes
· used
in a way that is adequate, relevant and not excessive
· accurate
· kept
for no longer than is absolutely necessary
· handled
according to people’s data protection rights
· kept
safe and secure
·
not transferred outside the European Economic Area without
adequate protection. (Info.talend.com, 2018)
There is stronger legal protection for more sensitive information, such as:
There is stronger legal protection for more sensitive information, such as:
· ethnic
background
· political
opinions
· religious
beliefs
· health
· sexual
health
· criminal
records (Info.talend.com, 2018)
In order to
operate efficiently there is requirements to collect information about the
people we work with. This may include members of the public, current, past and
prospective employees, funded bodies and suppliers.
In my case they
are artists I work close with. Artists whose work being on display in my gallery.
I know their emails, phone numbers, addresses. I have access to their social
media profiles – etc. I also hold their bank account information in order to
make payments. So, there is a lot of trust between us and all this personal
information must be handled properly under the Data Protection Act 1998 (‘the
DPA’).
The Act regulates the way people handle
‘personal data’ what being collected in the course of carrying out our
functions and gives certain rights to people whose ‘personal data’ we may hold.(Crownpeak.com, 2018)
Besides written information it also may include any expression of opinion about a living individual. So, I always need to be aware how I handle the personal information-meaning any recorded or unrecorded content I hold. There is no shearing whatsoever with others this information.
Besides written information it also may include any expression of opinion about a living individual. So, I always need to be aware how I handle the personal information-meaning any recorded or unrecorded content I hold. There is no shearing whatsoever with others this information.
D a t a
protection in my case should always be applied to all subject matter, whether
it is personal or corporate. Allowing me to have that balance between
individual privacy rights while still using necessary information for business
purposes.
Related links:http://www.legislation.gov.uk/ukpga/1998/29/contents
https://www.gov.uk/data-protection
______________________________________
Crownpeak.com. (2018). Make Your Website
Compliant with the GDPR | Crownpeak. [online] Available
at: https://www.crownpeak.com/landing-pages/campaigns/gdpr-website-compliance-ebook?LeadSource=AdWords&AdditionalInfo=make-website-compliant-gdpr&utm_source=AdWords&utm_medium=ppc&utm_campaign=EU%20-%20Data%20Protection%20Act%20-%20Exact&utm_adgroup=EU%20-%20Data%20Protection%20Act%20-%20Exact%20-%20Act&utm_keyword=data%20protection%20act&_bk=data%20protection%20act&_bt=258380463243&_bm=e&_bn=g&gclid=Cj0KCQjwqYfWBRDPARIsABjQRYyojnVDX3U_OvOA5fBFXPPCoWKrPaClIkoo6p_2vW7sSWNafIaqVAEaAmGSEALw_wcB
[Accessed 19 Mar. 2018].
I
nfo.talend.com. (2018). 5 Pillars for GDPR
Compliance. [online] Available at:
https://info.talend.com/en_bd_5pillars_gdpr_compliance.html?utm_source=google&utm_medium=cpc&utm_campaign=UK%20Search%20-%20Non-Branded%20-%20GDPR%20-%20Concept%20-%20Webinar&utm_term=%2Bdata%20%2Bprotection&utm_content=data%20protection&utm_creative=250429910770&lang=en&src=GoogleAdwordsOD_UK&kid=null&gclid=Cj0KCQjwqYfWBRDPARIsABjQRYzb98bc-EpEonYfLfyrtMPLwshKxdhS7NuwsjbrIS1xLk1kuyENNfEaAl_REALw_wcB
[Accessed 19 Mar. 2018].
Comments
Post a Comment