Jisc Legal : Data Protection

A point by point guide to Data Protection Law for FE and HE.

This overview explains the application of the Data Protection Act 1998 (the 'Act') to UK further and higher education institutions.

This briefing addresses the legal issues that further and higher education institutions may face when engaging with employers as part of their Business and Community Engagement ("BCE") activities.

This briefing gives an overview of some of the legal issues which institutions can face when carrying out cultural and public engagement activities as part of their Business and Community Engagement ("BCE") activities.

Whatever the mobile technology use, there are legal issues to consider from the outset of your project and this is a checklist of the main areas to consider in your planning process.

Institutions who share data might be interested in the ICO's latest publication.  They have published a statutory code of practice on data sharing by public sector bodies, businesses and other organisations.

The Cloud Industry Forum has launched a Code of Practice for cloud service providers.

The purpose of this Model Policy is to outline the circumstances in which it is permissible for an institution to access the IT accounts of staff members or students.

This framework offers practical advice aimed at assisting those involved in information sharing.

Generic guidance (widely applicable) together with sections devoted to the effect of the Act on the functions and activities associated with the work of Records Managers and Archivists.  

This section contains details of policies and legislation that relate to or have an impact on archives and records management, such as the Data Protection Act, the Freedom of Information Act and the current acts relating to archive services at local and regional levels.

The Section 60 Code of Practice on the Discharge of Functions by Public Authorities provides guidance to Scottish public authorities on practices they should follow in meeting their FOI obligations.

ARCHIVED

A generic Model Action Plan, produced by the Keeper of the Records of Scotland, to assist Scottish public authorities in the development of records management arrangements which comply with the Freedom of Information Scotland Act (2002) section 61 Code of Practice on Records Management. 

The Section 61 Code of Practice on Records Management provides authorities with guidance as to the keeping, management and destruction of the authorities' records.

This flowchart highlights steps to follow and relevant permissions required when seeking to release non public material in SCOOTER, an OER. 

New supplementary guidance from the GMC entitled 'Making and using visual and audio recordings of patients' is now available from their website.  

ACAS guide offers practical tips on the impact of social networking on discipline and grievances, bullying, defamation, data protection and privacy.

The European Commission has launched a consultation on cloud computing.  This will feed into the European cloud computing strategy due to be presented in 2012.

Queen Mary, University of London, have issued a series of papers on the legal issues associated with Cloud Computing.

JISC has launched a toolkit to allow information officers, IT directors, security managers and their staff to better understand the legal issues involved in managing identity issues.

This toolkit aims to guide information professionals in assessing cloud computing services for information use and storage, including development of a cloud computing strategy.

The site includes overview information, legislation documents and a range of reports from the specialist committees

The European Network and Information Security Agency (ENISA) has published its report ‘Security and Resilience in Governmental Clouds’ which assesses the operational, legal, and security requirements of cloud computing.

Guidance for public sector organisationsaims to make current equality law more consistent, clearer and easier to follow in order to make society fairer.

The ICO site offers guidance on data protection and how to keep personal information safe.

The Welsh Repository Network has published a learning tool to help you consider some of the copyright issues for multimedia respositories.

PI is a human rights group formed in 1990 as a watchdog on surveillance by governments and corporations.

The Project set out to examine how the 1998 Data Protection Act affects Higher Education Institutions

An information rich web site on the US approach to data protection and on-line privacy.

This guidance has been drawn together by HESA and its statutory customers

If you sell goods or services to consumers by internet, digital television, mail order, including catalogue shopping, phone or fax, then you need to know about the Consumer Protection (Distance Selling) Regulations 2000.