Subject Access Sample Clauses

Subject Access. Subject Access is an individuals right to have a copy of information relating to them which is processed by an organisation. Once information is disclosed from one agency to another, the recipient organisation becomes the Data Controller for that information. With regards to subject access requests, the Data Controller has a statutory duty to comply with Part 3, Chapter 3, section 45 of the DPA (Article 15 GDPR), unless an exemption applies. It is good practice for the recipient organisation to contact the originating organisation. This enables the originating organisation to advise the use of any statutory exemptions that may need to be applied prior to disclosure to the requesting individual. Communication should take place speedily thus allowing the servicing of the request to take place within the Statutory 1 calendar month time period.

Subject Access. Subject Access is an individuals right to have a copy of information relating to them which is processed by an organisation.

Subject Access. ‌ The Data Protection Act 1998 states that a person may request and have copies of any personal information held about them by any organisation. As part of the IG Toolkit accreditation each partner organisation must have a designated Data Protection Officer or Information Governance Manager who will be responsible for subject access requests. Access requests from third parties (e.g. police forces) for data available to organisations under this agreement are to be directed to the relevant data controller organisation.

Subject Access. 10.1 When an agency receives a subject access application and personal data is identified as belonging to another agency, it will be the responsibility of the receiving agency to contact the data owner to determine whether the latter wishes to claim an exemption under the provisions of the Data Protection Act. 10.2 Where a data controller cannot comply with the request without disclosing information relating to another individual who can be identified from that information, he is not obliged to comply with the request unless: - a) The other individual has consented to the disclosure of the information to the person making the request, or, b) It is reasonable in all circumstances to comply with the request without the consent of the other individual. 10.3 In determining whether it is reasonable, regard should be had to • Any duty of confidentiality owed to the other individual. • Any steps taken by the data controller with a view to seeking the consent of the other individual. • Whether the other individual is capable of giving consent, and • Any express refusal of consent by the other individual.

Subject Access. The Processor shall notify the University’s Governance Team ▇▇▇▇-▇▇▇▇▇▇▇▇▇▇@▇▇▇▇▇▇▇▇▇▇.▇▇.▇▇ within 2 working days if it receives a request from a Data Subject for access to that person's Data. The Processor shall provide the University with full co-operation and assistance in relation to any request made by a Data Subject to have access to that person's Data. The Processor shall not disclose the Data to any Data Subject or to a third party other than at the written request of the University or as provided for in this Agreement.

Subject Access. The Parties each agree to provide such assistance as is reasonably required to enable the other party to comply with requests from Data Subjects to exercise their rights under the Data Protection Legislation within the time limits imposed by the Data Protection Legislation. The signatory for each party is responsible for maintaining a record of individual requests for information, the decisions made and any information that was exchanged. Records must include copies of the request for information, details of the data accessed and shared and where relevant, notes of any meeting, correspondence or phone calls relating to the request. This document and the arrangements it details will be disclosable for the purposes of the Freedom of Information Act 2000 and so may be published with the signatories’ Publication Schemes. Any requests for information made under the Act that relates to the operation of this agreement should, where applicable, be dealt with in accordance with the Code of Practice under Section 45, Freedom of Information Act 2000. This Code of Practice contains provisions relating to consultation with others who are likely to be affected by the disclosure (or non-disclosure) of the information requested. The Code also relates to the process by which one authority may also transfer all or part of a request to another authority if it relates to information they do not hold. In the event of a dispute or claim brought by a data subject or the Supervisory Authority concerning the processing of shared Personal Data against either or all parties, the parties will inform each other about any such disputes or claims, and will cooperate with a view to settling them amicably in a timely fashion. The parties agree to respond to any generally available non-binding mediation procedure initiated by a Data Subject or by the Supervisory Authority. If they do participate in the proceedings, the parties may elect to do so remotely (such as by telephone or other electronic means). The parties also agree to consider participating in any other arbitration, mediation or other dispute resolution proceedings developed for data protection disputes. Each party shall abide by a decision of a competent court in the jurisdiction of England and Wales. Not all contacts received by the local authority where there are concerns about the welfare of a child/young person will be considered by the MASH. Where there is a clear child protection concern, the local authority decision make...

Subject Access. 6.1.1. One of the most important rights given to individuals by the DPA 1998 is the right of subject access. The following clauses shall apply if a Service User or someone duly authorised to act on their behalf makes a request to any Party for access to their Personal Data under Section 7 of the DPA 1998 (hereafter a “subject access request”).

Subject Access. If individuals wish to know what information is held about them, requests must be put in writing to the partner organisation. Warwickshire County Council will be the primary Data Controller for individuals to request access to their records, as they will hold the customer record for Priority Families. However, should the information requested have originated from another party to this Agreement then they will be contacted within 5 days of receiving the request and views sought on whether the information should be disclosed or whether there are any reasons which would legitimise it being withheld.

Subject Access. The Processor shall notify the University’s Governance Team ▇▇▇▇-▇▇▇▇▇▇▇▇▇▇@▇▇▇▇▇▇▇▇▇▇.▇▇.▇▇ within 2 working days if it receives a request from a Data Subject for access to that person's Data, a request to rectify, block or erase that persons Data or any other request, complaint or communication relating to the University’s obligations under the Data Protection Legislation. The Processor shall provide the University with full co-operation and assistance in relation to any request made by a Data Subject to have access to, rectify, block or erase that person's Data. The Processor shall not disclose the Data to any Data Subject or to a third party other than at the written request of the University or as provided for in this Agreement.