Written answers

Thursday, 20 May 2021

Department of Children, Equality, Disability, Integration and Youth

Data Protection

All Written Answers on 20 May 2021 « Previous answer Next answer »

Photo of Fergus O'DowdFergus O'Dowd (Louth, Fine Gael)
Link to this: Individually | In context | Oireachtas source

299. To ask the Minister for Children, Equality, Disability, Integration and Youth if his Department is fully compliant with GDPR EU requirements and the EU network and Information Security Directive and standards with respect to his Departments IT infrastructure including Article 29 of GDPR which requires that data processors access only the data they need for their task; if ISO 27001 Annex 9 standards on privileged access are fully met; and if he will make a statement on the matter. [27334/21]

Photo of Roderic O'GormanRoderic O'Gorman (Dublin West, Green Party)
Link to this: Individually | In context | Oireachtas source

On the broader matter of Departmental compliance with the GDPR, I can state that the Department continues to be actively engaged in meeting the wide range of obligations that the Regulation imposes on data controllers.

Responsibility for implementation of NIS (EU Network and Information Security directive) in Ireland lies with CSIRT-IE, in Department of Communications, Climate Action and Environment. DCEDIY is a member of the CSIRT network.

ICT services within the Department are provided and managed by the Office of the Government Chief Information Officer (OGCIO) and operate to agreed standards including the principle of least privilege.

Does this answer the above question?
Yes! 0 people think so!
No! 0 people think not!

Photo of Fergus O'DowdFergus O'Dowd (Louth, Fine Gael)
Link to this: Individually | In context | Oireachtas source

300. To ask the Minister for Children, Equality, Disability, Integration and Youth if any state or semi state bodies which report to his Department are fully compliant with GDPR EU requirements and the EU network and Information Security Directive and standards with respect to their IT infrastructure including article 29 of GDPR which requires that data processors access only the data they need for their task; if ISO 27001 annex 9 standards on privileged access are fully met; and if he will make a statement on the matter. [27352/21]

Photo of Roderic O'GormanRoderic O'Gorman (Dublin West, Green Party)
Link to this: Individually | In context | Oireachtas source

I wish to inform the Deputy that my officials have asked the agencies under the aegis of my Department to respond directly to you on this matter.

Does this answer the above question?
Yes! 0 people think so!
No! 0 people think not!

Comments

No comments

 

Log in or join to post a public comment.