Terminology
For the purposes of Data Protection the following definitions apply:
Data:
Automated and manual personal data supplied by the customer for the provision of services.
Automated Data:
Any computerised or scanned data or data held intended to be processed by computer.
Manual data:
Data held in a relevant structured filing system which is not computerised but which allows ready authorised access to personal data.
Personal data:
Data, including sensitive personal data, relating to a living individual who is or can be identified either from the data or from the data in conjunction with other information that is in, or is likely to come into, the possession of Kildare Local Authorities. Sensitive personal data relates to specific categories of data such as a person's racial origin; physical or mental health; criminal convictions or the alleged commission of an offence; trade union membership.
Data Controller:
A body that processes information about living people. The Data Controller must be in a position to control the contents and use of a personal data file. Due to the wide range of services offered by Kildare Local Authorities, a number of Data Controllers have been appointed to assume this role under the chairmanship of a nominated Director of Service.
Data Processor:
A body that processes personal data on behalf of a Data Controller.
Processing:
Performing any operation or set of operations on data: obtaining, organising, storing data, using, retrieving, altering, erasing and disclosing data.
Data Protection Commissioner:
The Data Protection Commissioner oversees compliance with the terms of the legislation. The Commissioner has a wide range of enforcement powers, including investigation of Kildare Local Authorities records and record-keeping practices. A Data Controller found guilty of an offence can be fined up to €100,000 and/or may be ordered to delete data. Kildare Local Authorities is registered as a Data Controller.