Find out about your obligations and how to comply, including protecting personal information, and providing access to official information.
Practical advice about protecting your personal information and how to exercise the rights available to you.
We are the independent regulatory authority that promotes respect for privacy & information rights of individuals.
Search our repository of useful information to get help with correctly managing data or protecting your privacy
The Data Protection (Jersey) Law 2018 gives citizens important personal information rights. The Jersey Law places obligations on how both the public and private sectors process personal information.
You share your data every time you sign up for an APP, use Instagram or Snapchat, or visit a website. Here is tailored advice on keeping your personal information safe in a highly connected world.
The Data Protection Authority (Jersey) Law 2018 requires organisations established in Jersey who are processing personal data to register with us. The principal purpose of registration is transparency and openness.
We have created easy-to-follow guides to walk you through a variety of data protection and freedom of information aspects.
Frequently asked questions for registrations and charges
This guidance note contains the Commissioner’s guidance on registration under the DPAJL. Registration is a statutory requirement and every controller and processor must register with the Authority.
This infographic identifies whether or not you need a Data Protection Officer.
A personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data.
Good information handling makes good business sense. You'll enhance your business's reputation, increase customer and employee confidence, and by making sure personal information is accurate, relevant and safe, save both time and money.
You have the right to find out if an organisation is using or storing your personal information.
Data Protection (Jersey) Law 2018 (DPJL) requires you to put in place appropriate technical and organisational measures to implement the data protection principles and safeguard individual rights. This is ‘data protection by design and by default’.
The Freedom of Information (Jersey) Law, 2011 provides details of how scheduled public authorities (SPAs) should handle requests for information about someone who has died.
