The Data Protection Act 1998 (DPA) regulates the processing of personal data, that is information about and relating to, living identifiable individuals. The Act gives individuals the right to access personal data that an organisation holds about them by making a Subject Access Request.
As a Data Controller, The Communities Sub-group is obliged to ensure that all processing of personal data is carried out in accordance with this legislation. These obligations are met by compliance with the eight data protection principles laid down in the DPA and ensuring that all processing is notified to the Information Commissioner.
Further information may be found by visiting the Information Commissioner's website.
The Act gives individuals a number of rights including the right to access personal data that an organisation holds about them. If an individual makes a request to view their information, it is known as a Subject Access Request
This right of access extends to all information held on an individual and includes:
Your rights of access are:
You can only see personal data that we hold about other people in certain circumstances, for example:
You do not have an automatic right to access all data held about you. We are legally obliged to withhold some data, for example if it would break our duty of confidentiality to other people mentioned in your files.