Register of data controllers

Register of data controllers

The Register of data controllers is a United Kingdom database under the control of the UK Information Commissioner's Office mandated by the UK Data Protection Act 1998[1] (The Act) which records the name of the data controller[2] and the purpose(s) for the processing of the data processed by that controller within the meaning of The Act.[3]

Under The Act a data controller may, under some circumstances, be exempt from registration, termed notification.[4] When not exempt,[5] failure to notify the Information Commissioner's Office formally prior to the commencement of processing data is a strict liability offence for which a prosecution may be brought by the Information Commissioner's Office in the criminal court of the UK. Exemption from registration does not exempt a data controller from compliance with The Act.

Amendments to a data controller's notification may be made at any time, and must be made prior to commencement of a new processing purpose.

Registration carries a fee, the proceeds of which fund the UK Information Commissioner's Office directly.

Any entry may be inspected at any time at no cost to the enquirer.[3]

Notes

  1. ^ "Data Protection Act 1998". Office of Public Sector Information. http://www.opsi.gov.uk/acts/acts1998/ukpga_19980029_en_1. Retrieved 2009-11-18. 
  2. ^ "Data Protection Act 1998 - Part 1, Basic Interpretive Provisions - Section 1". Office of Public Sector Information. http://www.opsi.gov.uk/acts/acts1998/ukpga_19980029_en_2#pt1-l1g1. Retrieved 2009-11-18. "'data controller' means, subject to subsection (4), a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be, processed;" 
  3. ^ a b "Register of data controllers". UK Information Commissioner's Office. http://www.ico.gov.uk/tools_and_resources/register_of_datacontrollers.aspx. Retrieved 2009-11-17. "The register contains the name and address of data controllers and a description of the kind of processing they do" 
  4. ^ "Notification under the Data Protection Act 1998". UK Information Commissioner's Office. http://www.ico.gov.uk/what_we_cover/data_protection/notification.aspx. Retrieved 2009-11-18. "Notification is a statutory requirement and every organisation that processes personal information must notify the Information Commissioner’s Office (ICO), unless they are exempt. Failure to notify is a criminal offence" 
  5. ^ "Notification Handbook - Section 4, Notification Exemptions". UK Information Commissioner's Office. http://www.ico.gov.uk/upload/documents/notifications_handbook_html/4_exemptions.html. Retrieved 2009-11-18. "The Act provides an exemption from notification for some data controllers." 

External links


Wikimedia Foundation. 2010.

Игры ⚽ Поможем написать реферат

Look at other dictionaries:

  • data protection — Under the Data Protection Act 1984, those holding personal data on computer (where the data relates to identifiable individuals) must observe certain principles in how the data is held and in respect of the collection, holding, disclosure, use… …   Law dictionary

  • Data Protection Act — The Data Protection Act (DPA) is a United Kingdom Act of Parliament. It defines a legal basis for the handling in the UK of information relating to living people. It is the main piece of legislation that governs protection of personal data in the …   Wikipedia

  • Data Protection Act 1998 — The Data Protection Act 1998 is a United Kingdom Act of Parliament which defines UK law on the processing of data on identifiable living people. It is the main piece of legislation that governs the protection of personal data in the UK. Although… …   Wikipedia

  • Data acquisition — is the process of sampling signals that measure real world physical conditions and converting the resulting samples into digital numeric values that can be manipulated by a computer. Data acquisition systems (abbreviated with the acronym DAS or… …   Wikipedia

  • Data Protection Directive — The Data Protection Directive (officially Directive 95/46/EC on the protection of individuals with regard to the processing of personal data and on the free movement of such data) is a European Union directive which regulates the processing of… …   Wikipedia

  • Directive 95/46/EC on the protection of personal data — The full title of this European Union directive is Directive 95/46/EC on the protection of individuals with regard to the processing of personal data and on the free movement of such data. The directive was implemented in 1995 by the European… …   Wikipedia

  • Control Data Corporation — (CDC) was a supercomputer firm. For most of the 1960s, it built the fastest computers in the world by far, only losing that crown in the 1970s after Seymour Cray left the company to found Cray Research, Inc. (CRI). CDC was one of the nine major… …   Wikipedia

  • Device control register — A device control register (DCR) is a register that resides in an element of a System on a chip (e.g. a memory unit, a DMA controller, other bus controller, a timer etc.) and allows to configure, control and probe this element. Typically, a… …   Wikipedia

  • Information Commissioner's Office — Status Governmental office Territory United Kingdom Leadership Information Commissioner: Christopher Graham Appointment 29 June 2009 …   Wikipedia

  • Information Commissioner's Office (UK) — The Information Commissioner s Office (ICO) in the United Kingdom, is a non departmental public body which reports directly to Parliament and is sponsored by the Ministry of Justice. It is the independent regulatory office dealing with the Data… …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”