Sensitive Data in UK Law
Legislation
-
Data Protection Act 2018
....... (3) In addition, where the processing for any of the law enforcement purposes is sensitive processing, the processing is permitted only in the two cases set out in subsections (4) and (5) . . (4) The first case is where—(a) the data ......
- The Data Protection (Processing of Sensitive Personal Data) Order 2012
-
Investigatory Powers Act 2016
...... interference and the acquisition and retention of communications data, bulk personal datasets and other information; to make provision about the .... (5) For the purposes of subsection (2) (b) , examples of sensitive information include—(a) items subject to legal privilege,(b) any ......
- The Data Protection (Processing of Sensitive Personal Data) Order 2009
See all results
Books & Journal Articles
-
Can you keep a secret? As a result of key decisions by the UK's information commissioners, firms competing for public contracts could routinely use the law to extract sensitive data on rival bidders. As "the public interest" increasingly outweighs the case for confidentiality, Neil Hodge considers how to shield your affairs from prying eyes.
...When the Freedom of Information Act 2000 came into force on January 1, 2005, public bodies such as NHS trusts and district councils braced themselves for a deluge of public requests for information. Yet private companies--totally exempt from the legi......
-
Ethnic Profiling: A Rising Challenge for European Human Rights Law
Ethnic profiling, defined as the use of racial, ethnic or religious background as a determining criterion for the adoption of law enforcement decisions, has been rising significantly in Europe, in .........Against the widely held assumption that personal data" protection legislation is insu⁄cie ntly protecti ve of ‘sensitive\xE2\x80"......
-
Semantic Disclosure Control: semantics meets data privacy
Purpose: To overcome the limitations of purely statistical approaches to data protection, the purpose of this paper is to propose Semantic Disclosure Control (SeDC): an inherently semantic privacy .........Then, SeDC ispresented by detailing how it can be enforced to detect and protect sensitive data.Findings –So far, data privacy has been tackled from a statistical perspective; that is, available solutionsfocus just on the distribution of ......
-
Ethics in the virtual world
Purpose: The purpose of this viewpoint paper is to provide an overview of three papers included in a Special Issue of the Journal of Information Communication Ethics and Society, entitled Ethics in.........: the explosion in the number of opportunities for accessingsensitive data in the health sector; the risks inherent in designing information systems ... in the number of opportunities foraccessing confidential and sensitive data that are afforded by the digital mediation ofdata, particularly in ......
See all results
Law Firm Commentaries
- Leicestershire County Council In Sensitive Personal Data Breach
- Information Commissioner's Office Fines Transgender Charity For Data Protection Breach Exposing Sensitive Personal Data
- Ouch - Torbay CT Made To Be More Than Sensitive Over Data Breach
-
Health Company Fined by UK’s Information Commissioner Office
Last week, the UK’s Information Commissioner’s Office (ICO) published a monetary penalty notice which fined a private healthcare company, HCA International, £200,000 for its failure to keep sensiti......... company, HCA International, £200,000 for its failure to keep sensitive data secure. In this instance, several data protection compliance issues ......
See all results