Reply to comment
Data Protection Registration as a planning tool
Submitted by Daragh O Brien on February 11, 2010 - 14:49Our philosophy is that Compliance done right is a benefit, not a burden. Compliance with the Data Protection Acts is no exception.
While registration with the Data Protection Commissioner is a statutory duty under the Data Protection Acts 1988 and 2003, there are a number of exemptions which can be availed of. As a result, many businesses or organisations have not had the statutory need to think in depth about the information they use in their operations.
However, the format and structure of the registration process provides a useful framework to begin thinking about the information that drives your business. This tutorial uses a mind-mapping approach to help drive out the key questions and issues which need to be considered by the business in how it governs its information, primarily for compliance with the Data Protection Act (but it could be extended for other purposes).
We would recommend to organisations that having an external facilitator assist with the development of of this kind of mind map is a worthwhile consideration as they will be able to ask questions and challenge assumptions from an independent and neutral perspective. This is a role we'd be delighted to take on for your organisation.
This tutorial is not intended to be taken as legal advice but as an outline of one possible approach to taming your Data Protection needs and understanding what the drivers are for information quality and the management of the information assets in your business.
The mind mapping tool used is Mind Meister.