Data Protection Checklist
Posted on November 10, 2009 by webmaster
This checklist will help you comply with the Data Protection Act. Being able to answer ‘yes’ to every question does not guarantee compliance, and you may need more advice in particular areas. But it should mean you are heading in the right dircetion;
- Do I really need this information about the individual?
- Do I know what I’m going to use it for?
- Do the people whose information I hold know that I’ve got it, and are they likely to understand what it will be used for?
- If I’m asked to pass on personal information, would the people whose information I hold expect me to do this?
- Am I satisfied the information is being held securely, whether it’s on paper or on computer? And what about my website, is it secure?
- Is access to personal information limited to those who absolutely need to know?
- Am I sure the personal information is accurate and up to date?
- Do I delete or destroy personal information as soon as I have no more need for it?
- Have I trained my staff on their responsibilities under the Data Protection Act? Are they fulfilling them in practice?
- Do I need to notify the Information Commissioner? If so, is my notification up to date?
For more information or advice on data protection and good information handling, visit www.ico.gov.uk or phone 08456 306060.
