Find out about your obligations and how to comply, including protecting personal information, and providing access to official information.
Practical advice about protecting your personal information and how to exercise the rights available to you.
‘Baking’ data protection into your processing activities.
Data Protection (Jersey) Law 2018 (DPJL) requires you to put in place appropriate technical and organisational measures to implement the data protection principles and safeguard individual rights. This is ‘data protection by design and by default’.
A Data Protection Impact Assessment (DPIA) is a process to help you identify and minimise the data protection risks of a project.
The Data Protection (Jersey) Law 2018 (DPJL) introduces a new obligation to do a DPIA before carrying out types of processing likely to result in high risk to individuals’ rights and freedoms. If your DPIA identifies a high risk you cannot mitigate, you must consult us.
CCTV is the most privacy intrusive form of data processing undertaken presenting the greatest risk to data subjects. It is important to take every reasonable measure to limit the collection of personal data from innocent people and to destroy it when it is no longer required for the original purpose.
