Leo Varadkar (Dublin West, Fine Gael)
Link to this: Individually | In context | Oireachtas source

The Department of Social Protection is registered as a data controller with the Office of the Data Protection Commissioner

The Department takes its responsibilities in relation to data protection very seriously. Every effort is made to ensure that personal customer data are used solely for business purposes and that they are not compromised in any way. The Department has data protection and information security policies, standards, procedures and guidelines in place governing the use of its computer systems and customer data.

On entry to the Department all new staff, including Medical Assessors, are required to sign an undertaking regarding obligations in relation to Data Protection and since 2016 the Staff Development Unit of this Department has developed and delivers an induction and orientation course to all new entrants.

Staff are regularly reminded of their data protection obligations and the consequences of not adhering to policies such as loss of pay increment(s), loss of entitlement to enter promotional competitions and dismissal. Staff members are required to sign annual undertakings that they have read, and will act in accordance with, data protection policies and guidelines.

The Department ensures oversight in relation to data protection by keeping records of data accesses which are then subject to audit.