|
|
|
|
confidential data
destruction healthcheck
| ? |
Have you assessed the risk to your business if your
confidential information fell into the wrong hands? |
| ? |
Are you aware of the responsibilities you have as
Data Controller under the new Data Protection Act? |
| ? |
Have you looked carefully and are you
satisfied at how your company handles confidential information and
disposes of it? |
| ? |
Do you have a signed Certificate of Destruction from
your present contractor? |
| ? |
Do you have a signed Duty of Care Waste Transfer
Note between you and your present contractor? |
| ? |
Have you checked that your present contractor carries
appropriate insurance cover indemnifying you against financial loss.
|
| ? |
Would you prefer a service supplier disposes of yourmaterial
in an environmentally responsible manner? |
If you answer no to any of the above questions, we
recommend you read the UKSSA
Standards and Code Of Practice, also available as part of our free
information pack.
Alternatively, contact your local UKSSA
member or email
us now.
More about the Data Protection Act and registration at
the official web site: www.dataprotection.gov.uk
| glossary of data protection terms: |
| data controller |
a person who (alone or jointly or in common with
other persons) determines the purposes for which, and the manner in
which, any personal data are, or are to be, processed |
| data subject |
an individual who is the subject of personal data |
| on computer |
the term computer includes any computer however
described, eg mainframe, desktop, laptop, palmtop, etc. It also includes
other types of equipment which, although not normally described as
computers, nevertheless have some ability to process automatically
eg automatic retrieval systems for microfilm and microfiche, audio
and visual systems, electronic flexitime systems and telephone logging
equipment |
| personal data |
personal data means data which relate to a living
individual who can be identified from those data or from those data
and other information which is in the possession of, or is likely
to come into the possession of, the data controller |
| processing |
processing means obtaining, recording or holding
the data or carrying out any operation or set of operations on the
data. It includes organising, adapting and amending the data, retrieval,
consultation, or use of any data, disclosing and erasure or destruction
of data. It is difficult to envisage any activity involving data which
does not amount to processing |
| purposes |
the purpose or purposes for which data are being
or are to be processed |
| recipients |
recipients are individuals or organisations to whom
the data controller intends or may wish to disclose the data |
| transfers |
the ordinary meaning of the word is transmission
from one place, person, etc to another, This will include posting
information on a website which can be accessed from overseas |
| data classes |
types of data being or to be processed |
|
