Scribd Logo
Upload

Welcome to Scribd!

  • DataProtectionObligations Part1

    Uploaded by

    Damien Seow
    4 views14 pages
    Organizations have several data protection obligations when collecting, using, or disclosing personal data, including notification, consent, and purpose limitation. The notification obligation requires informing individuals of the purposes for their personal data. The consent obligation means collecting, using, or disclosing personal data only with individuals' consent. The purpose limitation obligation limits using personal data to only appropriate purposes that were notified or consented to. These obligations give individuals autonomy over their personal data and ensure data is not misused without their knowledge.

    Original Description:

    Original Title

    DataProtectionObligations_part1

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Organizations have several data protection obligations when collecting, using, or disclosing personal data, including notification, consent, and purpose limitation. The notification obligation requires informing individuals of the purposes for their personal data. The consent obligation means collecting, using, or disclosing personal data only with individuals' consent. The purpose limitation obligation limits using personal data to only appropriate purposes that were notified or consented to. These obligations give individuals autonomy over their personal data and ensure data is not misused without their knowledge.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    4 views14 pages

    DataProtectionObligations Part1

    Uploaded by

    Damien Seow
    Organizations have several data protection obligations when collecting, using, or disclosing personal data, including notification, consent, and purpose limitation. The notification obligation requires informing individuals of the purposes for their personal data. The consent obligation means collecting, using, or disclosing personal data only with individuals' consent. The purpose limitation obligation limits using personal data to only appropriate purposes that were notified or consented to. These obligations give individuals autonomy over their personal data and ensure data is not misused without their knowledge.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 14

    Data Protection

    Obligations
    1
    Learning Outcomes

    • List the different data protection obligations


    • Explain the different data protection obligations
    • Explain the need for accountability
    • List the different data protection principles

    2
    Introduction

    With the increase in cybercrimes, it has becomes evident that there


    is a need to protect personal data, which is a powerful source of
    information.
    Thus, a set of obligations were created for the organisations to
    implement in order to maintain a standard amongst organisations
    that collect, use or disclose personal data of individuals.

    3
    Individual’s Autonomy over
    Collection of Personal Data Care of Personal Data
    Personal Data

    4
    Individual’s Autonomy over
    Collection of Personal Data Care of Personal Data
    Personal Data

    7
    NOTIFICATION OBLIGATION

    Notify individuals of the purposes for collecting, using and disclosing


    their personal data.

    Individuals are aware of what personal data they are providing and
    how their personal data will be used.

    9
    NOTIFICATION OBLIGATION

    When should
    How to notify? What to take note of?
    organisation notify?

    On or before • No specific manner The notification


    collecting, use or or form should be:
    disclosure • Can be via Data • Easy to understand
    Protection Policy
    • Highlight purpose
    • Can be physical
    of special concern
    document or any
    or unexpected
    other manner
    10
    Individual’s Autonomy over
    Collection of Personal Data Care of Personal Data
    Personal Data

    11
    CONSENT OBLIGATION

    Collect, use or disclose personal data for purposes which individuals


    have given consent to.
    Also allow them to withdraw their consent with reasonable notice.

    Gives individual more control over the personal data they are
    providing, and allows them to withdraw consent should they wish to.

    13
    CONSENT OBLIGATION
    To get consent… Is deemed to have When withdrawing… 14
    consented via…
    Individual has to be notified • Organisation must not
    of the purpose • By conduct prohibit individual from
    withdrawing
    • By contractual necessity
    Consent becomes invalid if… • Organisation must inform
    • By notification individual of consequences
    Consent was gather via
    Possible without consent if…
    unethical method
    • Emergency
    • Legitimate interest
    • Business improvement
    • Research
    • Publicly available
    Individual’s Autonomy over
    Collection of Personal Data Care of Personal Data
    Personal Data

    15
    PURPOSE LIMITATION OBLIGATION

    Collect, use or disclose personal data for purposes that a reasonable


    person would consider appropriate under given circumstances, and
    for which the individual has given consent to.

    Ensures that the personal data are not misuse for unreasonable
    purpose without individual’s knowledge.

    17
    PURPOSE LIMITATION OBLIGATION

    Organisation may collect, use, or


    disclose personal data…
    • Only for purposes that a reasonable person would
    consider appropriate in the circumstances
    AND
    • For purposes that the individual has been
    informed of by the organisation (in accordance
    with Notification Obligation)

    18
    Individual’s Autonomy over
    Collection of Personal Data Care of Personal Data
    Personal Data

    19

    You might also like