Alan Kelly (Tipperary North, Labour)
Link to this: Individually | In context | Oireachtas source

251. To ask the Minister for Health when her Department officials last met with the Data Protection Commissioner to ensure the highest standards are being met by the Department, and all agencies under its remit, in terms of compliance with data protection legislation. [14443/25]

Jennifer Carroll MacNeill (Dún Laoghaire, Fine Gael)
Link to this: Individually | In context | Oireachtas source

In addition to monitoring the application of the General Data Protection Regulation (GDPR), the Data Protection Commission (DPC) also promotes awareness of data protection compliance and assist organisations through the consultation function.

Under data protection legislation, the Department is required to consult with the DPC during the preparation of a legislative measure that relates to processing of personal data. As part of this legislative consultation process, officials in my Department liaise with the DPC during the drafting of legislation and meet with the DPC when appropriate and as necessary. My Department also engage regularly with the DPC on specific projects to identify risks to personal data and seek guidance to mitigate against risks.

For example, officials met with the DPC in February 2025 to provide an update on the Health Information Bill.

Agencies under the remit of my Department are data controllers in their own right and are therefore responsible for complying with their data protection obligations. These agencies routinely engage directly with the DPC for advice and guidance as appropriate.