The Insolvency Service’s Responsibilities
The Insolvency Service’s obligations under the Acts are:
- data must be obtained and processed fairly;
- data must be accurate, complete and where necessary, kept up to date;
- data must have been obtained only for one or more specified, explicit and legitimate purposes;
- data must not be further processed in a manner incompatible with that purpose;
- data must be adequate, relevant and not excessive in relation to the purpose for which they were collected or are further processed;
- data must not be kept for longer than is necessary for that purpose;
- appropriate security measures must be taken against unauthorised access to, or unauthorised alteration, disclosure or destruction of the data, in particular where the processing involves the transmission of data over a network, and against all other unlawful forms of processing;
- the Insolvency Service must be registered with the Data Protection Commissioner;
- the Insolvency Service owes a duty of care to the data subject concerned, i.e. the Insolvency Service must take care not to cause damage or distress by, for example, maintaining inaccurate information on files, or disclosing personal data to someone who is not entitled to this data.
What details has the Insolvency Service Registered with the Data Protection Commissioner?
The Insolvency Service is registered as a Data Controller with the Data Protection Commissioner and the register can be viewed on the Data Protection Commissioner’s website, www.dataprotection.ie