|
|
No. 25/1988:
DATA PROTECTION ACT, 1988
|
|
|
|
|
|
ARRANGEMENT OF SECTIONS
|
|
|
Preliminary
|
|
|
Section
|
|
|
1. Interpretation and application of Act.
|
|
|
Protection of Privacy of Individuals with regard to Personal Data
|
|
|
2. Collection, processing, keeping, use and disclosure of personal data.
|
|
|
3. Right to establish existence of personal data.
|
|
|
4. Right of access.
|
|
|
5. Restriction of right of access.
|
|
|
6. Right of rectification or erasure.
|
|
|
7. Duty of care owed by data controllers and data processors.
|
|
|
8. Disclosure of personal data in certain cases.
|
|
|
The Data Protection Commissioner
|
|
|
9. The Commissioner.
|
|
|
10. Enforcement of data protection.
|
|
|
11. Prohibition on transfer of personal data outside State.
|
|
|
12. Power to require information.
|
|
|
13. Codes of practice.
|
|
|
14. Annual report.
|
|
|
15. Mutual assistance between parties to Convention.
|
|
|
Registration
|
|
|
16. The register.
|
|
|
17. Applications for registration.
|
|
|
18. Duration and continuance of registration.
|
|
|
19. Effect of registration.
|
|
|
20. Regulations for registration.
|
|
|
Miscellaneous
|
|
|
21. Unauthorised disclosure by data processor.
|
|
|
22. Disclosure of personal data obtained without authority.
|
|
|
23. Provisions in relation to certain non-residents and to data kept or processed outside State.
|
|
|
24. Powers of authorised officers.
|
|
|
25. Service of notices.
|
|
|
26. Appeals to Circuit Court.
|
|
|
27. Evidence in proceedings.
|
|
|
28. Hearing of proceedings.
|
|
|
29. Offences by directors, etc., of bodies corporate.
|
|
|
30. Prosecution of summary offences by Commissioner.
|
|
|
31. Penalties.
|
|
|
32. Laying of regulations before Houses of Oireachtas.
|
|
|
33. Fees.
|
|
|
34. Expenses of Minister.
|
|
|
35. Short title and commencement.
|
|
|
FIRST SCHEDULE
|
|
|
CONVENTION FOR THE PROTECTION OF INDIVIDUALS WITH REGARD TO AUTOMATIC PROCESSING OF PERSONAL DATA DONE AT STRASBOURG ON THE 28TH DAY OF JANUARY, 1981
|
|
|
SECOND SCHEDULE
|
|
|
THE DATA PROTECTION COMMISSIONER
|
|
|
THIRD SCHEDULE
|
|
|
PUBLIC AUTHORITIES AND OTHER BODIES AND PERSONS
|
|
|
|
|
|
ACTS REFERRED TO
|
|
|
|
|
|
| Central Bank Act, 1971 |
1971, No. 24 |
| Civil Service Commissioners Act, 1956 |
1956, No. 45 |
| Civil Service Regulation Acts, 1956 and 1958 |
|
| Companies Act, 1963 |
1963, No. 33 |
| Companies Acts, 1963 to 1987 |
|
| Defence Act, 1954 |
1954, No. 18 |
| European Assembly Elections Act, 1977 |
1977, No. 30 |
| European Assembly Elections Act, 1984 |
1984, No. 6 |
| Interpretation Act, 1937 |
1937, No. 38 |
| Local Government Act, 1941 |
1941, No. 23 |
| Official Secrets Act, 1963 |
1963, No. 1 |
| Petty Sessions (Ireland) Act, 1851 |
1851, c. 93 |
| Prison Act, 1970 |
1970, No. 11 |
| Public Offices Fees Act, 1879 |
1879, c. 58 |
| Statutory Instruments Act, 1947 |
1947, No. 44 |
|
|
|
|
|
|
Number 25 of 1988
|
|
|
|
|
|
DATA PROTECTION ACT, 1988
|
|
|
|
|
|
AN ACT TO GIVE EFFECT TO THE CONVENTION FOR THE PROTECTION OF INDIVIDUALS WITH REGARD TO AUTOMATIC PROCESSING OF PERSONAL DATA DONE AT STRASBOURG ON THE 28TH DAY OF JANUARY, 1981, AND FOR THAT PURPOSE TO REGULATE IN ACCORDANCE WITH ITS PROVISIONS THE COLLECTION, PROCESSING, KEEPING, USE AND DISCLOSURE OF CERTAIN INFORMATION RELATING TO INDIVIDUALS THAT IS PROCESSED AUTOMATICALLY.
|
|
|
[13th July, 1988]
|
|
|
BE IT ENACTED BY THE OIREACHTAS AS FOLLOWS:
|
|
|
Preliminary
|
|
|
|
|
|
|
|
|
|
