Introducing
Your new presentation assistant.
Refine, enhance, and tailor your content, source relevant images, and edit visuals quicker than ever before.
Trending searches
Full end-to-end digital service
Web Design & Development
Digital Marketing
Technical Support
Consultancy
Established in 2005, we now have a team of 35 working extensively in both Private and Public Sectors, with large and small businesses and organisations across the UK and overseas. We also work in the Charitable Sector on a World Health Initiative developing technology to fight infectious diseases.
We design and build websites, applications, intranets and mobile apps, and also manage and maintain hosting environments, supporting 200+ business websites and web environments for the NHS and Councils.
Established in 2005, we now have a team of 35 working extensively in bo...
Data Controllers
Special Categories of Data
Data Processors
Consent
Processing
Data Concerning Health
Personal Data
DATA CONTROLLERS
A natural or legal person which determines the purposes and means of processing personal data.
A natural or legal person that processes data on behalf of a controller.
Any operation on personal data made by any means.
Any information that may be used to identify a natural person, directly or indirectly.
Includes racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data (where used to identify a natural person), data concerning health, sexual orientation, sex-life information.
Freely given, informed, specific, unambiguous indication of the data subjects wishes in an affirmative action or statement.
Personal data relating to mental or physical health of a natural person including health care service provision where this reveals health status.
SPECIAL CATEGORIES OF DATA; IMPLICATION
Processing of this data is prohibited unless:
1. Lawfulness, fairness & transparency
2. Purpose limitation
3. Data minimisation
4. Accuracy
5. Storage limitation
6. Integrity & confidentiality
7. Accountability
To be lawful data must be collected on the basis of consent, contractual necessity, legal obligation, to protect the vital interests of the data subject, to carry out a task in the public interest or to pursue the legitimate interests of the data controller, unless over-ridden by fundamental rights.
The data must be collected in a transparent fashion where the data subject explicitly agrees to the collection of data on an active (and not passive) basis.
Data must be collected for lawful, legitimate purposes and must not be processed in a manner that is incompatible with the originally stated purpose.
Only the data specified according to the consent or other lawful collection should be processed. No other data should be processed and the organisation should have mechanisms for ensuring this is the case.
Any data held must be accurate.
The organisation should have routines for ensuring that data is accurate at the point of collection and remains accurate during storage. Where inaccuracies are found, data must be corrected or removed where necessary.
The data should only be held in an identifiable form for as long as it is required to fulfil the purposes of collection or the period agreed in the declaration of consent.
Organisations should have mechanisms for purging data that is not necessary.
Data should be held in a manner that ensures appropriate security of the data including protection against unauthorised alteration, destruction, unlawful processing, loss or damage using appropriate technical and organisational measures.
Organisations are required to be able to demonstrate compliance with the regulations. The onus is entirely on processors and controllers in this regard.
All companies (undertakings, or groups of undertakings) collecting data on EU data subjects.
All companies (undertakings, or groups of undertakings) established in the EU.
Hosted service providers such as Amazon and Rackspace (they are seen as processors).
The likes of Facebook, Google, Twitter, and so on, that collect and monetize data on natural people.