Data Protection Compliance in the UK : a Pocket Guide by Rosemary Jay; Jenna Clarke

By Rosemary Jay; Jenna Clarke

This publication provides a transparent description of the information defense Act, outlining its phrases and explaining its standards. it's crucial interpreting when you've got a accountability for the safety of non-public info, in particular when you are a director, a supervisor or an IT expert. The pocket consultant contains convenient solid perform assistance for workers. The easy-to-follow record tells you the sensible steps you need to be taking Read more...

Show description

Read or Download Data Protection Compliance in the UK : a Pocket Guide PDF

Similar management information systems books

Outsourcing Management Information Systems

This ebook balances the confident results of outsourcing, that have made it a well-liked administration technique with the adverse to supply a extra inclusive choice; it explores hazard components that experience no longer but been largely linked to this process. It specializes in the conceptual "what", "why", and "where" points of outsourcing in addition to the methodological "how" facets"

Design of Sustainable Product Life Cycles

Product existence cycle layout – producing sustainable product existence cycles explains the significance of a holistic long term making plans and administration method of attaining a greatest product profit over the whole existence cycle. The paradigm of considering in product lifestyles cycles helps brands in shaping winning items.

Additional info for Data Protection Compliance in the UK : a Pocket Guide

Sample text

Faxes for marketing purposes must not be sent to individual subscribers unless those subscribers have agreed to receive them. 18 They also have the right to notify the marketer that the organisation does not wish to receive marketing faxes. Telephone marketing must not be carried out to any subscriber, whether a corporate subscriber or an individual subscriber, who has either told the caller that they do not want to receive such calls, or that they have registered with the TPS. There is no restriction (apart from complying with the general data protection rules) about sending email marketing to people at their work or corporate e-mail address, but marketing e-mails to individual subscriber addresses is restricted.

The Information Commissioner generally refers to ISO27001 as an appropriate security standard which could be adopted by data controllers to help meet their obligations. Another aspect of principle 7 is that the data controller must take reasonable steps to ensure the reliability of employees who have access to personal data. This generally means that the data controller must ensure people are properly trained and will be subject to disciplinary action if they fail to comply with the company’s proper security standards.

Be aware of those circumstances in which personal data may be collected by your section or your business unit, and check that all of those points of collection have data protection notices that comply with your organisation’s policy. If you are responsible for special services, such as the website or setting up marketing emails, ensure you are up to date on the relevant rules and are wholly compliant. Check what training is available within the organisation for staff on data protection security and related issues.

Download PDF sample

Rated 4.11 of 5 – based on 46 votes