SEARCH UCD

Advanced Search
 
 

Medical Bureau of Road Safety

General Data Protection Regulation (“GDPR”)

Introduction

The EU General Data Protection Regulation (“GDPR”) comes into force across the European Union on 25th May 2018.

The new Regulation aims to standardise data protection laws and processing across the EU; affording individuals stronger, more consistent rights to access and control their personal information.

 

General Statement

The Medical Bureau of Road Safety fully respects your right to privacy and actively seeks to preserve the privacy rights of those who share information with us.

Any personal information you provide to the Medical Bureau of Road Safety will be treated with the highest standards of security and confidentiality, in accordance with the Data Protection legislation.

Your attention is drawn to restrictions to your rights under the Regulation, Article 23.1(d), relating to the “prevention, investigation, detection or prosecution of criminal offences” as this applies to the functions of the Medical Bureau of Road Safety under the Road Traffic Acts 1968 – 2016.

 

Processing of Personal Data

The Medical Bureau of Road Safety does not collect any personal data about you on this website apart from information you volunteer, for example by contacting the Medical Bureau of Road Safety by e-mail. For general web browsing no personal information is revealed to us.

Where our site has links to other sites the Medical Bureau of Road Safety is not responsible for the content, copyright or privacy policies of these web sites.

Any information you provide is not made available to any third parties, unless required by law under the Road Traffic Acts 1968 – 2016 and is used by the Medical Bureau of Road Safety only in accordance with the purpose for which you provided the information.

The GDPR requires the Medical Bureau of Road Safety to process personal information in accordance with the following principles relating to the processing of personal data:

Personal data shall be:

  • Processed lawfully, fairly and in a transparent manner in relation to the data subject;

  • Personal data shall be collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes;

  • Personal data shall be adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;

  • Personal data shall be accurate and, where necessary, kept up to date;

  • Personal data shall be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed;

  • Personal data shall be processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures;

  • The controller shall be responsible for and be able to demonstrate compliance with the GDPR.