数据控制者目录
数据控制者目录(英語:Register of data controllers)是英国依据《1998年数据保护法案》设立的数据库。目录由信息专员办公室管理,[1]用于登记数据控制者(数据收集者)的信息以及收集和处理数据的目的。[2][3][4]
根据《数据保护法案》,在某些情况下,数据控制者可豁免登记。[5]当无法达到豁免要求[6]时,在开始收集数据前未能通知信息专员办公室(即登记到目录)是一项無过错責任罪行,可被信息专员办公室刑事检控。[7]
登记加入目录缴纳的费用被直接用于英国信息专员办公室的运作。任何人均可免费查询此目录。
参考文献
编辑- ^ Data Protection Act 1998. Office of Public Sector Information. [2009-11-18]. (原始内容存档于2010-08-24).
- ^ Register of data controllers. UK Information Commissioner's Office. [2015-07-16]. (原始内容存档于2015-07-17).
We publish the name and address of these data controllers, as well as a description of the kind of processing they do.
- ^ Register of Data Controllers. The Advertising Protection Agency. [22 March 2012]. (原始内容存档于2011年1月7日).
The ICO then publishes certain details from the registration data in the register of data controllers which is available to the public for inspection.
- ^ Notifying the Information Commissioner's Office about personal information. Business Link. [22 March 2012]. (原始内容存档于2012-10-15).
The Data Protection Act 1998 requires businesses to give details about the way they process personal information to the Information Commissioner's Office (ICO) for inclusion in a public register, unless they are exempt. This is called notification.
- ^ Register (notify) under the Data Protection Act. UK Information Commissioner's Office. [2015-07-16]. (原始内容存档于2015-07-16).
The Data Protection Act 1998 requires every data controller (eg organisation, sole trader) who is processing personal information to register with the ICO, unless they are exempt.
- ^ In brief – are there any exemptions from the Data Protection Act?. UK Information Commissioner's Office. [2015-07-16]. (原始内容存档于2015-07-16).
... there are some exemptions from the Act to accommodate special circumstances.
- ^ Register of Data Controllers - University of Strathclyde. University of Strathclyde. [22 March 2012]. (原始内容存档于2018-03-13).
Every organisation that processes, i.e. holds and uses, personal information must be registered with the UK Information Commissioner's Office (ICO), unless they are exempt. This registration is a statutory requirement under the Data Protection Act and failure to notify the ICO is a criminal offence.