Data Protection Principles Clause Samples
The Data Protection Principles clause establishes the fundamental rules and standards for handling personal data within an agreement. It typically requires parties to process personal information lawfully, fairly, and transparently, and to implement appropriate security measures to protect such data from unauthorized access or breaches. By setting out these requirements, the clause ensures compliance with relevant data protection laws and helps safeguard the privacy rights of individuals, thereby reducing the risk of legal liability and reputational harm.
Data Protection Principles. Each User and/or ITM is a separate business project. Dreamport treats each User and/or ITM as an independent contractor – legal persons. Data provided by Users and/or ITMs means “personal data which concerns legal persons” (B2B relationships) and is necessary to access the Platform. As a result, Dreamport uses best practices originated from provisions of data protection laws and guides, at the same time, Dreamport as a party in B2B relationships may derogate from those laws and guides.
Data Protection Principles. Anyone processing personal data must comply with the seven Data Protection Principles set out in Article 5 of the UK GDPR, which in summary are:
Data Protection Principles. 16.1 Under the GDPR, the data protection principles set out main responsibilities organisations. Article 5 of the GDPR requires that personal data shall be: Processed lawfully, fairly and in a transparent manner in relation to individuals; collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall not be considered to be incompatible with the initial purposes; adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed; accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay; kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organisational measures required by the GDPR in order to safeguard the rights and freedoms of individuals; and processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.
16.2 All members and their representatives of the Partnership should not only be aware of these principles but also have a good working knowledge of the Act. This is particularly important for data controllers and processors who must not rely purely on these principles.
Data Protection Principles. The employer will comply with data protection law. This says that the personal information the employer holds about the employee must be:
1. Used lawfully, fairly and in a transparent way.
2. Collected only for valid purposes that the employer has clearly explained to the employee and not used in any way that is incompatible with those purposes.
3. Relevant to the purposes the employer has told the employee about and limited only to those purposes.
4. Accurate and kept up to date.
5. Kept only as long as necessary for the purposes the employer has told the employee about.
6. Kept securely.
Data Protection Principles. No matter how it is collected, recorded and used (e.g. on a computer or on paper) this personal information must be dealt with properly to ensure compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 (the Act). DHS has designed the VitruCare solution guided by the eight principles of the Act which for reference are summarised below:
1 Personal data shall be processed fairly and lawfully. 2 Personal data shall be obtained/processed for specific lawful purposes.
3 Personal data held must be adequate, relevant and not excessive.
4 Personal data must be accurate and kept up to date. 5 Personal data shall not be kept for longer than necessary. 6 Personal data shall be processed in accordance with rights of data subjects.
Data Protection Principles. Principle 1 – Personal data shall be processed Lawfully, Fairly and Transparently
Data Protection Principles. Processed fairly, lawfully and transparently (e.g. Privacy Notices/Statements). • Collected for specific purposes and not used for incompatible purposes. • Adequate, relevant and limited to what is necessary. • Accurate and, where necessary, kept up to date. • Retained no longer than necessary (e.g. Retention & Destruction Schedules). • Kept securely (e.g. ICT Security Policies). More detail on each of the data protection principles is attached as Appendix C or from the ICO. See links on the contents page of this document.
Data Protection Principles. 7.1 What do I need to know to help me decide whether or not to share?
7.1.1 Whether the data sharing is systematic / routine data sharing or one off data sharing, there are supporting principles applicable to both. Understanding these principles will help you to decide whether or not to share personal data and complete any necessary documentation – e.g. a DPIA, a Data Sharing Agreement or a Data Sharing Decision Form.
Data Protection Principles. 4.1 Anyone processing personal data must comply with the eight enforceable principles of good practice. These provide that personal data must be:
(a) Processed fairly and lawfully.
(b) Processed for limited purposes and in an appropriate way.
(c) Adequate, relevant and not excessive for the purpose.
(d) Accurate.
(e) Not kept longer than necessary for the purpose.
(f) Processed in line with data subjects' rights.
Data Protection Principles. Data Protection Act 1998 Rights of the Individual