CHAPTER 2: THE DATA CONTROLLER/DATA PROCESSOR RELATIONSHIP

Responsibility for compliance with the data protection principles and other aspects of the Act lies with the ‘Data Controller’.

The Data Controller is defined in the Act as “a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are … processed”. ‘Person’ in this context very rarely means an individual (or ‘natural person’). Instead, in most cases the Data Controller will be an organisation, although individuals who are in business on their own account can also be Data Controllers. It is important to note that group-level responsibility for data protection compliance is not an option. Each legal ...

Get Data Protection and the Cloud: Are the risks too great? now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.