Data Protection Bill: Summary of government amendments for Lords Committee tabled on 20 October 2017

Similar documents
Annex - Summary of GDPR derogations in the Data Protection Bill

Data Protection Bill: Summary of government amendments for House of Commons Public Bill Committee tabled on 6 March 2018

Data Protection Bill [HL]

Data Protection Bill [HL]

Data Protection Bill [HL]

Data Protection Bill [HL]

Trade Bill EXPLANATORY NOTES

European Union (Withdrawal) Bill

BILL. Repeal the European Communities Act 1972 and make other provision in connection with the withdrawal of the United Kingdom from the EU.

European Union (Withdrawal) Bill

SUPPLEMENTARY MEMORANDUM CONCERNING THE DELEGATED POWERS IN THE BILL FOR THE DELEGATED POWERS AND REGULATORY REFORM COMMITTEE

EU (Withdrawal) Bill- Committee stage

ARTICLE 29 Data Protection Working Party

European Union (Withdrawal) Bill

THE CHILDCARE BILL Memorandum prepared by the Department for Education for the House of Lords Delegated Powers and Regulatory Reform Committee

LORDS AMENDMENTS TO THE ENTERPRISE AND REGULATORY REFORM BILL

Regulatory Activity (Section 31)

The Lords Amendments to the European Union (Withdrawal) Bill House of Commons Consideration. Briefing by the Law Society of Scotland

HAULAGE PERMITS AND TRAILER REGISTRATION BILL [HL] EXPLANATORY NOTES

Data Protection Act 1998

DELEGATED POWERS AND REGULATORY REFORM COMMITTEE CRIME (OVERSEAS PRODUCTION ORDERS) BILL MEMORANDUM BY THE HOME OFFICE

FOOTBALL SPECTATORS AND SPORTS GROUNDS BILL

These notes relate to the Lords Amendments to the Welfare Reform Bill, as brought from the House of Lords on 31 January 2012 [Bill 302].

Investigatory Powers Bill

Digital Economy Bill: Parts 1 4

Identity Cards Bill EXPLANATORY NOTES. Explanatory notes to the Bill, prepared by the Home Office, are published separately as Bill 9 EN.

Trade Bill EXPLANATORY NOTES

European Union Bill EXPLANATORY NOTES

SANCTIONS AND ANTI-MONEY LAUNDERING BILL AMENDMENT TO BE MOVED IN COMMITTEE

Political Parties, Elections and Referendums Act amendments relating to European Parliamentary Elections; and for connected purposes.

Healthcare (International Arrangements) Bill (changed to Healthcare (European Economic Area and Switzerland Arrangements) Bill)

Digital Economy Bill: Parts 5 7

FINANCIAL GUIDANCE AND CLAIMS BILL [HL] EXPLANATORY NOTES

HAULAGE PERMITS AND TRAILER REGISTRATION BILL [HL] EXPLANATORY NOTES

Digital Economy Bill [HL]

Lisbon Treaty Referendum Bill

Scotland Bill EXPLANATORY NOTES. Explanatory notes to the Bill, prepared by the Scotland Office, are published separately as Bill 115 EN.

Policing and Crime Bill

Version 1 of 1. Charities Act c. 50

Prevention of Terrorism Act 2005

FINANCIAL GUIDANCE AND CLAIMS BILL [HL] EXPLANATORY NOTES ON COMMONS AMENDMENTS

Technical and Further Education Bill

INVESTIGATORY POWERS BILL EXPLANATORY NOTES

Immigration and Social Security Co-ordination (EU Withdrawal) Bill

SAFEGUARDING VULNERABLE GROUPS ACT 2006

FINANCIAL GUIDANCE AND CLAIMS BILL [HL] EXPLANATORY NOTES

SUPPLEMENTARY MEMORANDUM CONCERNING THE DELEGATED POWERS IN THE BILL FOR THE DELEGATED POWERS AND REGULATORY REFORM COMMITTEE

Small Business, Enterprise and Employment Bill

Delegated Powers Memorandum for The London Olympic Games and Paralympic Games (Amendment) Bill

Data Protection Bill, House of Commons Second Reading Information Commissioner s briefing

Disability Discrimination Act CHAPTER 13 CONTENTS. Go to Preamble. Public authorities

Employment Bill [HL]

1998 No (C.61) TERMS AND CONDITIONS OF EMPLOYMENT

Healthcare (International Arrangements) Bill

PARKING (CODE OF PRACTICE) BILL EXPLANATORY NOTES

Anti-social Behaviour, Crime and Policing Bill

DATA PROTECTION (JERSEY) LAW 2018

Regulation of Investigatory Powers Bill

Equality Bill. The Bill is divided into two volumes. Volume I contains the Clauses and Volume II contains the Schedules to the Bill.

Football Spectators and Sports Grounds Bill

BRIBERY ACT 2010: JOINT PROSECUTION GUIDANCE OF THE DIRECTOR OF THE SERIOUS FRAUD OFFICE AND THE DIRECTOR OF PUBLIC PROSECUTIONS

Recall of MPs Bill (Draft) CONTENTS PART I. How an MP becomes the subject of a recall referendum PART II. Returning officers and their role PART III

POWERS OF CRIMINAL COURTS (SENTENCING) BILL

Assembly Acts the Welsh Government Claim Could Not Be Made Under the New Reserved Powers Model: UK Government Analysis

PARKING (CODE OF PRACTICE) BILL EXPLANATORY NOTES

European Union (Withdrawal) Bill

Wales Bill [AS AMENDED IN COMMITTEE] CONTENTS PART 1

2013 No FOOD. The Fish Labelling Regulations 2013

IMMIGRATION AND SOCIAL SECURITY CO-ORDINATION (EU WITHDRAWAL) BILL EXPLANATORY NOTES

Consultation. Amending the definition of employed barrister (non-authorised body)

Transport (Scotland) Bill

APPRENTICESHIPS, SKILLS, CHILDREN AND LEARNING BILL

Charities and Trustee Investment (Scotland) Bill [AS INTRODUCED]

Crime (Overseas Production Orders) Bill [HL]

Transparency of Lobbying, Non Party Campaigning and Trade Union Administration Bill 2013 House of Commons Report Stage and Third Reading

CHARITIES AND TRUSTEE INVESTMENT (SCOTLAND) ACT 2005 EXPLANATORY NOTES

Consolidated text PROJET DE LOI ENTITLED. The Data Protection (Bailiwick of Guernsey) Law, 2001 * [CONSOLIDATED TEXT] NOTE

2014 No. 379 SEA FISHERIES. The Sea Fishing (Points for Masters of Fishing Boats) (Scotland) Regulations 2014

European Union (Withdrawal) BillAct 2018

EHRiC/S5/18/ACR/26 EQUALITIES AND HUMAN RIGHTS COMMITTEE AGE OF CRIMINAL RESPONSIBILITY (SCOTLAND) BILL SUBMISSION FROM THE LAW SOCIETY OF SCOTLAND

Memorandum of Understanding Between The Information Commissioner and the Surveillance Camera Commissioner

ADDENDUM STANDING ORDERS

Climate Change Bill [HL]

xmlns:atom=" xmlns:atom=" Fraud Act CHAPTER 35

IMMIGRATION BILL DELEGATED POWERS MEMORANDUM BY THE HOME OFFICE

Sanctions and Anti-Money Laundering Bill [HL]

Employment of Children Act

Data Protection Bill, House of Lords second reading Information Commissioner s briefing

2010 No CHILDREN AND YOUNG PERSONS

Disclosure and Barring Service

Protection of Freedoms Bill. Delegated Powers - Memorandum by the Home Office. Introduction

BORDERS, CITIZENSHIP AND IMMIGRATION BILL [HL] EXPLANATORY NOTES

Anti-social Behaviour, Crime and Policing Act 2014

Information Privacy Act 2000

EDUCATION AND SKILLS BILL

Small Business, Enterprise and Employment Bill

Fire and Rescue Services Act 2004

Regulation of Investigatory Powers Act 2000

Forensic Science Regulator Bill

2007 No COMPANIES AUDITORS. The Statutory Auditors and Third Country Auditors Regulations 2007

Transcription:

Data Protection Bill: Summary of government amendments for Lords Committee tabled on 20 October 2017 Note: amendment numbers below are in the format Clause/-page number line number as they will not be otherwise numbered until the first marshalled list of amendments is produced. Part 2 - General data processing 1 4-3-40 Clause 4 A technical amendment to ensure there is clarity that the definition of health professional in clause 183 applies in Part 2 of the Bill. 2 12 Sch1-113-8 10-6-12 1 Clause 10 The GDPR refers to health data being processed under the responsibility of a health professional whereas the Bill says under the supervision of a health professional. To clarify that no intentional difference in meaning is being conveyed, these amendments ensure that consistent language is used. 3 Sch1-120-37 1 The Bill contains provision, copied from the Data Protection Act, to allow Members of Parliament to be informed of prisoners being released into their constituencies. The Bill extends this provision to Members of the Scottish Parliament but no provision is made for members of the Welsh Assembly because the Welsh Government was still considering the issue at the point of Bill introduction. The amendment extends the same privileges to members of the Welsh Assembly. 4 Sch1-121-1 1 This amendment fills a technical gap which may limit the ability of legal publishers to publish judgments. Judgments often contain details of individuals including sensitive data relating to criminal convictions. The amendment creates a new processing condition for special categories of data and criminal conviction data to allow the publication of this material. 5 6 7 8 9 Sch1-121-3 Sch1-121-4 Sch1-121-5 Sch1-121-9 Sch1-121-11 1 The Bill contains provision to allow anti-doping programs in sport to operate in the absence of the data subject s consent to continued processing. These amendments broaden this exemption to capture a wider range of behaviours that sports governing bodies are investigating to maintain the integrity of sport by permitting the processing of special categories of data, including health data, for these purposes. 1

10 11 17 18 19 56 57 65 66 67 Sch1-121-36 Sch1-121-38 Sch2-126-29 Sch2-126-30 Sch2-126-31 Sch8-170-28 Sch8-170-30 Sch11-174-18 Sch11-174-19 Sch11-174-20 1 2 8 11 The Bill makes provision to allow the processing of personal data to establish a legal claim. This sort of processing would generally be done by an instructed lawyer on behalf of the claimant. These amendments ensure that there is consistency in the language used across the Bill, maintaining consistency with the language used in the Data Protection Act 1998. 13 10-6-16 Clause 10 Clause 10 provides supplementary provision for clause 9. This is a technical amendment is a correction to ensure the clause correctly cross refers to clause 9. 14 15 16 20 21 13-7-9 13-7-10 13-7-15 Sch2-127-33 Sch2-127-38 Clause 13 2 To maintain consistency with the language of the GDPR stakeholders have asked us to insert the word similarly at the start of clause 13(2)(b). This amendment ensures there is consistency and avoids any confusion. The text in the Bill that describes the operation of Article 22 of the GDPR is also subject to a technical amendment. Paragraph 7 of this restricts the exercise of rights by data subjects where necessary for the purposes of discharging functions concerned with the protection of members of the public, charities and fair competition in business, as set out in the table. This technical amendment makes is clear that dishonesty, malpractice or other seriously improper conduct does not have to relate to financial services to engage the restrictions. 22 Sch2-130-2 2 Paragraph 9 of this exempts various regulators from having to comply with certain data rights where these would compromise investigations or active regulatory activity. This amendment adds additional regulators to protect the integrity of their work. 23 Sch2-135-42 2 Where confidential references are given for employment purposes they are exempted from data rights. This amendment extends this to references given for volunteers. 24 90 Sch2-137-45 184-105-21 2 Clause 184 Clause 184 contains a definition of publish that applies to the whole Bill. A technical amendment extends this definition to related terminology such as publications. An amendment also removes an unnecessary duplicate definition of publish found 25 26 Sch2-138-10 Sch2-138-30 2 in 2. These technical amendments simply improve the consistency of drafting language in the schedule. 2

27 28 29 30 31 32 33 34 35 Sch3-140-35 Sch3-142-43 Sch3-146-4 Sch3-147-19 Sch3-147-28 Sch3-147-35 Sch3-147-38 Sch3-147-43 3 This creates exemptions from the GDPR where necessary for education purposes. These technical amendments ensure that the schedule correctly applies to independent schools and academies in England. Further technical amendments ensure consistent application between England, Wales, Scotland and Northern Ireland. 36 Sch4-152-6 4 The reference to the Adoption Support Services and Allowances (Scotland) Regulations 2009 is deleted because regulation 28(1) has been repealed and is now covered by paragraph 3(3)(f) of the. 37 38 39 40 41 42 43 44 45 46 47 48 49 Sch5-155-39 Sch5-156-2 Sch6-157-11 Sch6-157-20 Sch6-157-28 Sch6-158-38 Sch6-159-3 Sch6-159-33 Sch6-163-13 Sch6-163-40 Sch6-165-2 Sch6-166-12 Sch6-166-14 5 6 In paragraph 4(9) of the schedule, the reference to sub-paragraph (7) should in fact be to (8). Those who brought the error to our attention thought that further clarity would help so a further related technical adjustment has been tabled. This contains modifications to the GDPR to create the applied GDPR which relates to general data processing outside the scope of EU law. These amendments correct a number of drafting errors recently identified. 50 51 52 53 54 55 58 59 60 61 Parts 3 - Law enforcement processing Sch7-168-13 7 Sch7-168-36 Sch7-169-4 Sch7-169-9 Sch8-170-20 Sch9-171-34 Sch10-173-6 8 9 10 Parts 4 - Intelligence services processing 90-51-9 Clause 90 90-51-9-2 These amendments add to the list of competent authorities who process personal data for law enforcement purposes. The technical amendment to 8 clarifies that sensitive processing under Part 3 is lawful for purposes of the exercise of a function conferred on a person by a rule of law as well as by an enactment. A similar point arises in relation to s 9 and 10 (which relate to Part 4). These amendments to clause 90 simply ensure that the summary description of the rights conferred on data subjects by Chapter 3 of Part 4, as set out in subsection (1) of that clause, fully itemises each of the relevant rights. 3

62 63 64 68 69 70 71 92-53-18 97-56-14 98-56-38 Clause 92 Clause 97 Clause 98 Part 5 - Information Commissioner 127-68-31 Clause 127 127-68-32 127-68-37 18 127-69-17 Clause 102 provides that when two or more intelligence services jointly determine the purposes and means of processing personal data, they are joint controllers for the purposes of Part 4 of the Bill. The Bill provides that a court order may only be made against the controller responsible for a contravention. Technical amendments are needed to ensure that the liability of joint controllers is clear. Clause 127 places a duty of confidentiality on the Information Commissioner and her staff. These technical amendments ensure consistency with section 59 of the Data Protection Act 1998. 72 133-72-33 Clause 133 Clause 133 includes provision to bind the Crown. This is unnecessary as clause 188 already binds the Crown. This minor amendment removes the duplication. Part 6 - Enforcement 73 74 78 75 76 77 139-76-2 148-81-38 150-83-40 Sch16-189-9 Sch16-189-11 Sch16-189-21 Clause 139 Clause 148 Clause 150 16 Clause 139 provides an offence of failure to comply with an information notice. The Bill, however, does not provide an offence for failure to comply with an enforcement notice for which there instead the possibility of an administrative penalty. This is inconsistent so these amendments ensure that an administrative penalty is the sanction for failure to comply with either notice. The offence in clause 139 of providing false information in response to an information notice is retained. Where the Commissioner intends to give an administrative penalty she must give a notice of intent, to which the data controller may make representations. The Commissioner may not give a penalty notice in reliance on a notice of intent after the end of the period of 6 months beginning with the day after the notice of intent is given. In some complex cases the data controller may require more than 6 months to make representations. These amendments allow the Commissioner to offer controller more time but only if they consent to the possibility of a penalty beyond the normal 6 month limitation. 4

79 80 81 82 83 84 85 86 87 88 91 164-93-6 164-93-8 166-94-27 166-94-28 166-94-34 166-94-38 166-94-42 168-95-23 185-106-8 Clause 164 Clause 166 Clause 168 Clause 185 Where person data is processed for special purposes (journalism, academic, artistic or literary purposes) there are certain exemptions in place so the Commissioner must first determine if processing is for a special purpose before taking further enforcement action. A special purposes determination can be appealed to a court, not a tribunal. These amendments correct the Bill as only a court, not tribunals are relevant and also make technical corrections to ensure compatibility with Scots law. The definition of special purpose proceedings is also widened slightly as special purposes could be asserted in a wider range of situations. The term data protection principles is no longer used in Part 6 of the Bill so these amendments delete unnecessary definitions. Part 7 - Supplementary 89 169-96-8 Clause 169 Paragraph 24 of 2 provides journalistic exemptions. In determining whether a matter is the public interest journalists may refer to one of the codes of practice which are listed. The Secretary of State has the power to amend the list of codes by regulation. Clause 169 exempts the Secretary of State from having to consult the Information Commissioner before making regulations. This technical amendment restores the need to consult. 92 In the Title Long Title The Long Title includes a line to say that the Bill will make provision for a direct marketing code of conduct. As per clause 120 it is a code of practice, not a code of conduct. This amendment makes the necessary correction. Department for Digital, Culture, Media and Sport 20 October 2017 5

2024 © lawsdocbox.com Privacy Policy | Terms of Service | Feedback