🧑⚕️ Health insurance companies sometimes request information directly from a GP so that medical costs and services can be paid.
How does this work under the GDPR❓
www.dataprotection.ie/en/faqs/banking-insuranc...
A Data Protection Officer should have an appropriate level of expertise in data protection law and practices to enable them to carry out their role.
Take a look at our guidance on the appropriate qualifications for DPOs to learn more 👇
www.dataprotection.ie/en/dpos/qualifications-d...
📘 Codes of Conduct are voluntary sets of rules that assist with compliance and accountability in specific sectors or relating to particular processing operations.
Codes of conduct and certification mechanisms under the GDPR explained ℹ️ www.dataprotection.ie/en/organisations/codes-c...
📸 This blog goes through the common queries we receive from schools, parents and even photographers about taking photos at school events.
Take a look and remember to ⏸️#PauseBeforeYouPost
dataprotection.ie/en/dpc-guidance/blogs/ta...
Principles of Data Protection 🛡️
👉 dataprotection.ie/en/organisations/data-pr...
Data controllers must take responsibility for their processing of personal data, how they comply with the GDPR, and they must be able to demonstrate their compliance.
Principles of Data Security: A data controller has a duty to limit access to personal data on a "need to know" basis, with greater limitations on more sensitive data.
Read our guide to Data Security: www.dataprotection.ie/en/organisations/know-yo...
We are delighted that our Pause Before You appear video and campaign has been nominated in 2 categories at the Global Social Media Awards 2026.
We have been nominated in the ‘Best Charity/Not-for-Profit Campaign’ and ‘Most Impactful Social Media Campaign’ !
📷 At large events it is advisable to have notices in place advising attendees of the intention to take photos etc.
Our FAQs 👉 www.dataprotection.ie/en/faqs/topical-data-pro...
Under the GDPR, certain organisations are required to appoint a designated Data Protection Officer (DPO).
Organisations are also required to publish the details of their DPO and provide these details to their national supervisory authority.
🔎 This complaint arose from a workplace investigation regarding allegations made by the complainant against a colleague and the subsequent access request they made.
👉 www.dataprotection.ie/en/dpc-guidance/case-stu...
Case Study 📋 Confidential Expressions of Opinion and Subject Access Requests: www.dataprotection.ie/en/dpc-guidance/case-stu...
🌍 The transfer of personal data from the EU to outside the EU should not undermine the level of protection of the individuals concerned.
Read our guide: www.dataprotection.ie/en/organisations/interna...
🔒 Organisations are required to report personal data breaches to the DPC where the breach presents a risk to the individuals affected, without undue delay.
FAQ 🔗 www.dataprotection.ie/en/faqs/responsibilities...
📝 This blog examines the right of access under the GDPR and how the DPC handles complaints from individuals who are concerned that organisations have not addressed their Subject Access Requests appropriately.
Take a look! www.dataprotection.ie/en/dpc-guida...
Lá Fhéile Pádraig Sona ón gCoimisiún um Chosaint Sonraí.
Happy St. Patrick's Day from the Data Protection Commission.
#LáFhéilePádraig #StPatricksDay
🔔 ☎️ Helpdesk Update. From Monday, 16 March our phonelines will be open weekdays between 9.30am – 1.00pm.
All of our contact details are available here on our website here 👉 https://www.dataprotection.ie/en/contact/how-contact-us
❓ Ceisteanna Coitianta - Fianáin 🍪
Tá suíomh Gréasáin nó aip ag iarraidh orm toiliú le fianáin – cé na roghanna atá agam?
❓ FAQs - Cookies 🍪
I am being asked by a website or app to consent to cookies – what choice do I have?
Gach uair go roinneann tú a saol ar líne, tá tú i mbaol a sonraí pearsanta a roinnt leis an domhan. Déan machnamh roimh phostáil.
#SeachtainNaGaeilge #PauseBeforeYouPost
Tá sé de cheart ag gach duine cosaint sonraí pearsanta a bhaineann leis nó léi: www.dataprotection.ie/ga/individuals/cearta-da...
🔔 ☎️ Helpdesk Update. From Monday, 16 March our phonelines will be open weekdays between 9.30am – 1.00pm.
All of our contact details are available here on our website here 👉 https://www.dataprotection.ie/en/contact/how-contact-us
🎉 Wishing everyone a happy International Women’s Day from the Data Protection Commission
It was great to meet our Canadian colleagues Stephan Luciw and Harpreet Bains. Stephan and Harpreet work with the Information and Privacy Commissioner of Ontario @ipcontario.bsky.social and both made a visit to our Dublin office this week. A lovely opportunity to exchange ideas and perspectives!
Bhain an gearán seo le freagra, a líomhnaítear a bheith neamhiomlán, ar iarratas rochtana le haghaidh píosa scannáin TCI a rinne an gearánach chuig institiúid oideachais.
🔗 www.dataprotection.ie/ga/dpc-guidance/case-stu...
📖🔗 Read the full decision on our website: dataprotection.ie/en/dpc-guida...
Le linn Seachtain na Gaeilge, gheobhaidh tú níos mó eolais (as Gaeilge) maidir le bunrudaí cosanta sonraí, cearta daoine aonair faoin GDPR, agus feidhmiú do chearta, ag https://www.dataprotection.ie/ga/individuals
LATEST NEWS The Data Protection Commission (DPC) has today published its final decision following an inquiry into a personal data breach in University of Limerick. The DPC assessed University of Limerick’s technical and organisational measures for ensuring the security of personal data that it processed and also examined compliance with the controller’s obligation to notify breaches promptly. The DPC reprimanded University of Limerick and imposed administrative fines totalling €98,000.
🔔 Latest News
The Data Protection Commission Announces Conclusion of Inquiry into University of Limerick
Statement from the DPC welcoming the publication of Digital Ireland Connecting our People, Securing our Future, the National Digital & AI Strategy 2030
The Data Protection Commission (DPC), as part of the Digital Regulators Group (DRG), welcomes the publication of Digital Ireland – Connecting our People, Securing our Future, the National Digital & AI Strategy 2030.
👉 dataprotection.ie/en/news-medi...
Topical FAQ 🙋
📷 There is nothing in the GDPR that prohibits people from taking photos in a public place.
However, what you do with that photo can potentially become a data protection issue, e.g. if the photograph was sold for commercial gain or was posted publicly on a social media account.
Commissioner Des Hogan outlined our role in engaging and advising on AI systems from tech companies. Since 2021, we have engaged with approximately 180 AI products and services, often before reaching market.
Commissioner Hogan’s remarks came during today’s Joint Committee on AI.
Join us for an information webinar on our 🛠️ Data Protection Toolkit for Schools, tailored for school leadership at primary and post-primary levels.
This workshop will offer practical guidance and a space for common queries and challenges.
✍️ Register now at https://blackrockesc.ie/
