News

  • Breach reporting facility added

    Friday 25th May is fast approaching, and in advance of the implementation of the Data Protection (Jersey) Law 2018, the OIC has added a new section on the website home page specifically for breach reporting.

    The online form can be used to submit a breach report, and any follow up information can be sent to us using the breach@oicjersey.org email address.

    To view the form and relevant guidance on breach reporting, please click here.

     

    Read more >
  • UPDATE: Guidance and resources added to OIC website

    As part of its programme of transition to the new GDPR era, the Office of the Information Commissioner has today added the first tranche of guidance, resources, and useful links to its website, together with all the new legislation applicable from 25th May this year.

    We will of course be adding to this page over the coming months, so please keep an eye on any changes. in the meantime you can find the new materials here.

    Read more >
  • Notice of change of website and email addresses

    NOTICE OF CHANGE OF WEBSITE AND EMAIL ADDRESSES:

    Please be advised that with effect from Monday 9th April 2018, the website address for the Office of the Information Commissioner will change to www.OICJersey.org

    In addition, the contact email addresses will be changing. These are detailed as follows:

    General enquiries:          

    enquiries@OICJersey.org

    Breach reporting:            

    breach@OICJersey.org

    Careers:                        

    careers@OICJersey.org

    Staff emails (Example): 

    a.nother@OICJersey.org

    Please be advised that any emails received at the dataci.org addresses will not be automatically forwarded. Instead you will be asked to re-send your email to the new address.

    All telephone numbers for the OIC will remain unchanged.

    We apologise for any inconvenience caused and respectfully request that you amend your contact list to reflect the above changes.

    Thank you.

    Read more >
  • Chair appointed for new Data Protection Authority

    Assistant Chief Minister, Senator Paul Routier MBE, has today announced his intention to appoint Mr. Jacob Kohnstamm as Chair of Jersey’s new Data Protection Authority.

    Mr. Kohnstamm will advise the Authority as it prepares to regulate the Island’s updated data protection framework. He will also play an integral role in helping the Authority to develop new governance structures and in ensuring that Jersey continues to provide the highest level of protection for personal data.

    Mr. Kohnstamm will act initially as Shadow Chair, and subsequently as Chair when Jersey’s new data protection laws come into effect on 25 May 2018. This is the same day that the General Data Protection Regulation comes into effect. Jersey’s new data protection laws will see the Office of the Information Commissioner replaced by the Data Protection Authority.

    Mr. Kohnstamm has extensive experience in the area of data protection. He chaired the Dutch Data Protection Authority from 2004 to 2016; from 2010-2014 he chaired the Article 29 Working Party, an advisory body comprising the data protection regulators of all EU Member States; and he chaired the International Data Protection and Privacy Commissioners Conference from 2011 to 2014.

    Senator Routier said: “We are delighted to have secured Mr. Kohnstamm to chair Jersey’s Authority. Mr. Kohnstamm has vast international experience at the highest levels of data protection regulation. His appointment reflects Jersey’s standing in this important field.”

    Mr. Kohnstamm commented: “It is a great honour for me to serve both Jersey and the area of data protection in this new role. It is crucial that jurisdictions meet the required standards of data protection, as this provides the trust that individuals, civil society, government and private companies need to innovate and make full use of modern technology.”

    The appointment of Mr. Kohnstamm is the latest step for Jersey’s data protection system, a key feature of which is the Island’s ‘adequacy’ with European Union standards. This status enables data to flow freely between Jersey and the European Union. At a recent meeting with the European Commission, officials re-confirmed that Jersey’s adequacy status would remain in force until 2020.

    Read more >
  • New data protection legislation registered

    Following Privy Council approval, the Royal Court today registered new data protection legislation that will strengthen individuals’ rights and enable Island businesses to continue accessing international markets.

    The Data Protection (Jersey) Law 2018 and Data Protection (Authority) Jersey Law 2018 will come into effect on 25 May 2018.

    The new Laws will enable data to continue moving freely between Jersey and the European Union, benefitting trade and helping law enforcement agencies cooperate with their counterparts in other jurisdictions.

    Earlier this year, the Laws were unanimously agreed by the States Assembly.

    The Assistant Chief Minister, Senator Paul Routier M.B.E., said “this is an important milestone for Jersey. The new data protection regime will bolster the rights of Islanders, ensure equivalence with the EU and further our standing as a trusted place to do business”

    Read more >
  • It’s Data Protection day!

    New consumer data protection law less than four months away

    STRONGER protection for consumers when it comes to their personal data is now less than four months away from coming into force in Jersey.

    With European Data Protection Day falling on Sunday 28th January, the Office of the Information Commissioner is urging people to become more familiar about their rights about how their data is handled when the new legislation comes into effect.

    ‘Jersey’s new Data Protection laws come into force on 25th May 2018, the same day as the new European General Data Protection Regulation (GDPR). They extend the rights of individuals, giving them more control over what happens to their personal information,’ said Deputy Information Commissioner Paul Vane.

    Under the new rules, business will have to provide individuals with more information when it comes to personal data handling – including stronger rules around how businesses ensure individuals have consented to the use of such information.

    ‘With European Data Protection Day, it’s the perfect time to highlight these new laws that will benefit consumers. As well as long-standing rights of access to, and correction of personal information in specific cases, the new laws allow for the erasure of personal information in some circumstances, and the right to data portability,’ added Mr Vane.

    GDPR, which also aims to harmonise compliance regulations for business, will be the biggest change to data protection across Europe in more than 20 years. More guidance for individuals and business will be added to the Commissioner’s website over the coming months. For more information, go to www.thinkgdpr.org

     

    Read more >
  • Career opportunities with the OIC

    Following the approval of the new Data Protection Laws in the States Assembly last week, the Office of the Information Commissioner has today started work on growing its team by advertising two new positions.

    For more details please take a look at our new Careers page.

    Read more >
  • States Assembly pass new Data Protection laws

    The States Assembly yesterday unanimously approved the Draft Data Protection (Jersey) Law 201- and the Draft Data Protection Authority (Jersey) Law 201-

    Chief Minister, Senator Ian Gorst said yesterday that he was “pleased that the States Assembly has approved new data protection laws that will help to strengthen individuals’ rights and ensure that Island businesses remain competitive“.

    The new laws will now be referred to Privy Council for Royal Assent before being registered in the Royal Court. Both laws are due to be implemented on 25th May 2018. Links to both laws can be found below.

    Draft Data Protection (Jersey) Law 201-

    Draft Data Protection Authority (Jersey) Law 201-

    Read more >
  • Proposed new Data Protection Laws lodged

    The proposed new Data Protection Laws have been today lodged with the States Assembly and are scheduled to be debated in the States on Tuesday 16th January 2018.

    The Draft Data Protection (Jersey) Law 201- and the Draft Data Protection Authority (Jersey) Law 201- can be found by following the links below:

    http://www.statesassembly.gov.je/assemblypropositions/2017/p.116-2017.pdf

    http://www.statesassembly.gov.je/assemblypropositions/2017/p.117-2017.pdf

    Read more >
  • Work continues to prepare the Channel Islands for new data protection legislation

    WORK is continuing to prepare the Channel Islands for new data protection legislation which is due to come into force in 2018, says the islands’ independent data protection regulator.

    Emma Martins said she and her pan-Island team were working hard to support both governments and businesses in the islands, recognising the potential economic benefits for those who engage with the opportunities created by the EU’s General Data Protection Regulation (GDPR).

    Her comments come after it was announced by the States of Jersey and the States of Guernsey that the data protection commissioner will be leaving her post in March 2018. The governments also confirmed that the pan-Island role will end, with each island introducing their own dedicated data protection commissioner post at that time.

    ‘After the recent decision for the Islands to move away from a pan-island data protection regulator, we will continue to work hard to ensure the Islands are as prepared as possible for the new data protection legislation in May 2018,’ said Mrs Martins, who is the Data Protection Commissioner in Guernsey and the Information Commissioner in Jersey.

    ‘The decision is regrettable after the two islands have come such a long way together and in light of the significant work done in recent years to create a pan-island presence. To a certain degree, it reflects the fast evolving nature of the data economy.’

    Important work to prepare the islands for GDPR will, however, continue to be carried out by Mrs Martins and her team.

    ‘These events should not and must not distract from the important work that lies ahead and on which industry and citizens are entitled to our complete focus and attention. There are very real economic opportunities for any jurisdiction that embraces those opportunities in an intelligent and enlightened way,’ added Mrs Martins.

    Read more >