Data Protection for Data Controllers

Share This:

Data Protection

As more and more data is held in digital form it is fundamental that the correct procedures are put in place for the complete data lifecycle to which it was initially collected.

The role of insuring that there is a optimum level of protection is a function of the Data Protection Commisioner, which is a role that was established in 1988.
Over the past few years, this role was previously held by Billy Hawkes (Since 2005) but he was succeeded by Helen Dixon in September 2014.

This Role, is responsible for not only Irish Companies and citizens, but also for the protection of personal data for millions of European citizens due to the fact that several US multinationals, including Facebook, Linkedin and Apple have based their EU headquarters in Ireland.

Several cases have been brought against organisations to include the following:

  • Wrongful disclosure of personal data,
  • ‘further processing’ data (using data for purposes other than for which it was obtained) and wrongful processing
  • Security Of Data,
  • Excessive collection of Data,
  • Retention of Data

A useful link provided on the Data Protection Website, illustrate several Case studies as examples, for further details see

The Data Protection webiste also illustrates several guides, one such guide well worth a some research is available on
This url illustrates a guide for data controllers and lists 8 rules of data protection as follows
1. Obtain and process information fairly

2. Keep it only for one or more specified, explicit and lawful purposes

3. Use and disclose it only in ways compatible with these purposes

4. Keep it safe and secure

5. Keep it accurate, complete and up-to-date

6. Ensure that it is adequate, relevant and not excessive

7. Retain it for no longer than is necessary for the purpose or purposes

8. Give a copy of his/her personal data to an individual, on request



A Guide For Data Controllers,  Data Protection Commissioner Online Website, Retrieved 24/3/2015