Data Protection Directive and Compliance

| Sarbanes Oxley Training  Basel ii Training Data Protection Directive  Information Security  Privacy/Legal  Contact Us  |
   
Data Protection Awareness and Training
Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data
 
SECTION VI
EXEMPTIONS AND RESTRICTIONS
 
Article 13
 
Exemptions and restrictions
 
1. Member States may adopt legislative measures to restrict the scope of the obligations and rights provided for in Articles 6 (1), 10, 11 (1), 12 and 21 when such a restriction constitutes a necessary measures to safeguard:
 
(a) national security;
 
(b) defence;
 
(c) public security;
 
(d) the prevention, investigation, detection and prosecution of criminal offences, or of breaches of ethics for regulated professions;
 
(e) an important economic or financial interest of a Member State or of the European Union, including monetary, budgetary and taxation matters;
 
(f) a monitoring, inspection or regulatory function connected, even occasionally, with the exercise of official authority in cases referred to in (c), (d) and (e);
 
(g) the protection of the data subject or of the rights and freedoms of others.
 
2. Subject to adequate legal safeguards, in particular that the data are not used for taking measures or decisions regarding any particular individual, Member States may, where there is clearly no risk of breaching the privacy of the data subject, restrict by a legislative measure the rights provided for in Article 12 when data are processed solely for purposes of scientific research or are kept in personal form for a period which does not exceed the period necessary for the sole purpose of creating statistics.
 
 
SECTION VII
THE DATA SUBJECT'S RIGHT TO OBJECT
 
 
Article 14
 
The data subject's right to object
 
Member States shall grant the data subject the right:
 
(a) at least in the cases referred to in Article 7 (e) and (f), to object at any time on compelling legitimate grounds relating to his particular situation to the processing of data relating to him, save where otherwise provided by national legislation. Where there is a justified objection, the processing instigated by the controller may no longer involve those data;
 
(b) to object, on request and free of charge, to the processing of personal data relating to him which the controller anticipates being processed for the purposes of direct marketing, or to be informed before personal data are disclosed for the first time to third parties or used on their behalf for the purposes of direct marketing, and to be expressly offered the right to object free of charge to such disclosures or uses.
 
Member States shall take the necessary measures to ensure that data subjects are aware of the existence of the right referred to in the first subparagraph of (b).
 
 
 
Article 15
 
Automated individual decisions
 
1. Member States shall grant the right to every person not to be subject to a decision which produces legal effects concerning him or significantly affects him and which is based solely on automated processing of data intended to evaluate certain personal aspects relating to him, such as his performance at work, creditworthiness, reliability, conduct, etc.
 
2. Subject to the other Articles of this Directive, Member States shall provide that a person may be subjected to a decision of the kind referred to in paragraph 1 if that decision:
 
(a) is taken in the course of the entering into or performance of a contract, provided the request for the entering into or the performance of the contract, lodged by the data subject, has been satisfied or that there are suitable measures to safeguard his legitimate interests, such as arrangements allowing him to put his point of view; or
 
(b) is authorized by a law which also lays down measures to safeguard the data subject's legitimate interests.
 
 
 
SECTION VIII
CONFIDENTIALITY AND SECURITY OF PROCESSING
 
 
 
Article 16
 
Confidentiality of processing
 
Any person acting under the authority of the controller or of the processor, including the processor himself, who has access to personal data must not process them except on instructions from the controller, unless he is required to do so by law.

Article 1 to 4

Article 5 to 8

Article 9 to 12

Article 13 to 16

Article 17 to 20

Article 21 to 26

Article 27 to 30

Article 31 to 34

Return to Index

Our Web Sites

 

 

Sarbanes Oxley Training
Courses designed to provide with the knowledge and skills needed to understand and support Sarbanes-Oxley compliance.
www.sarbanes-oxley-training.com  
 
Basel ii Training
Courses designed to provide with the knowledge and skills needed to understand and support Basel ii compliance.
www.basel-ii-training.com 
 
Sarbanes Oxley Act
Sarbanes Oxley Compliance: Books, Software, Certification, Training and Resources.
www.sarbanes-oxley-act.biz 
 
Basel ii Accord
Basel ii Compliance: Books, Software, Certification, Training and Resources
http://www.basel-ii-accord.com/  
 
Compliance Training
Sarbanes Oxley, Basel ii, Data Protection Directive, Information Security Training
www.compliance-training.net
 
Legal Risk and Compliance
Legal Risk: The Achilles Heel of Corporate Governance.
Asbestos and Mesothelioma: The legal risk, the victims and the lawyers.
Employment related lawsuits.
http://www.legal-risk.com/
 
Compliance LLC
Compliance LCC is a company specializing in risk management, Sarbanes Oxley
and Basel ii compliance from an IT and Information Security perspective.
http://www.compliance-llc.com

 

 

© 2006 Copyright Compliance LLC Delaware USA ● www.compliance-llc.com Sarbanes Oxley Consulting
 Sarbanes Oxley Training Basel ii  Consulting Basel ii Training Compliance Research Projects