Dublin Docklands Development Authority does not routinely collect personal information, except for information which is volunteered by e-mail or by the completions of completion of feedback forms. Information which is collected is done so only with the consent of the individual. All personal information supplied will be treated as confidential and will only be used for the intended purpose. We will not pass your personal details on to any third parties.
Technical details of your visit to this website are recorded only for business purposes. These details include IP addresses and web search terms. This information will only be used for statistical and administrative purposes.
Data Protection Policy
Introduction The current Data Protection legislation (The Data Protection Act 1988, and the Data Protection (Amendment) Act 2003,) requires organisations to adhere to a code of conduct in regard to how they process and control personal data. This ‘personal data’ relates to information, which is held by data controllers and which could be used to identify a living individual. Specifically this could relate to addresses, phone numbers etc. and includes that which is termed ‘sensitive data,’ such as information relating to; gender, ethnicity, political, religious or philosophical beliefs, trade union membership, sexual life, physical or mental health or involvement in a criminal process. The Data Protection legislation protects the right of the individual to access their personal information and to have inaccuracies rectified or deleted. It also places a responsibility on the data controllers and processors, (those who obtain, store, utilise and dispose of data,) to obtain and process information in a responsible manner.
This policy is a statement of the Authority’s commitment to upholding the principals of data protection and to protecting the rights of the individual.
It refers to both manual and electronic data and applies to all employees of the Dublin Docklands Development Authority. Principles of Data Protection The principles of Data Protection require the Authority, as the data controller, and staff, as data processors, to ensure that personal information is:
- Obtained and processed fairly,
- Kept only for one or more specified and lawful purposes,
- Process it only in ways compatible with the purposes for which it was given to you initially
- Kept safe and secure
- Kept accurate and up to date
- Ensure that it is adequate relevant and not excessive
- Retain it no longer than it is necessary for the specified purpose or purposes
- That a copy of an individual’s personal data is available to that individual at their request.
Rights of the individual
The Act provides the individual with the right:
- to access his/her personal information or to have obsolete or inaccurate information erased or amended,
- to have their names removed from direct marketing lists within 40 days of the request,
- to know to whom the information has been disclosed,
- to know the source of the information,
- to have an element of human input in decisions made, thus protecting them from automated decision making,
- to complain to the Data Protection Commissioner who will investigate the matter and has significant powers to ensure that legislation is upheld,
Procedure for Access
Personnel files are available to staff members as a matter of Human Resources Policy. External individuals may request a copy of any information which relates to them, and which is held on computer or in a structured manual filing system. In order to access their personal information, the requester should complete the Information request form (attached), complete with proof identity (e.g. Passport) and return it to the Authority. A maximum of €6.35 may be charged for the request and the request must be responded to within forty days.
Restriction of rights of access
The right of access is restricted where the data is:
- required for the purpose of preventing, detecting or investigating offences, apprehending or prosecuting offenders, or assessing moneys due to the State;
- subject to legal professional privilege;
- kept only for statistical or research purposes and the results are not made available in a way that identifies data subjects;
- Where information is held for back-up purposes.
The Authority will ensure that a specific individual is nominated as the Data Protection Officer and that all staff involved in data processing is informed of their roles and responsibilities. The Authority Archivist has been appointed to this role and is available to provide support and guidance to all departments.
Procedures and Guidelines
This policy supports the development of Data Protection Procedures and guidelines to facilitate best practice in relation to Data Protection within the Docklands Authority.
This policy will be reviewed annually and gauged in terms of its consistency in accommodating legislative requirements.
Please download here the Data Protection Personal Information Request Form