Principles of data protection
Security and confidentiality
We will ensure that your data is kept safe and secure. High standards of physical and technical security are essential to protect the confidentiality of personal data. These include:
- ensuring that staff access rights extend only to that information necessary to carry out their appointed duties
- ensuring computer systems are password protected
- non-disclosure of personal security passwords to any other individual (including other Revenue employees)
- keeping audit logs in relation to read access or changes on our systems
- keeping information on computer screens and paper files out of view from callers to offices
- having appropriate facilities in place for disposal of confidential waste
- having adequate security measures and policies in place in relation to the use of laptops and other mobile storage devices
- ensuring that personal data is not stored on portable devices except in essential circumstances.
- ensuring that personal data is encrypted when:
- being stored on portable devices
- transferred electronically (including via email)
- keeping premises secure, especially when unoccupied
- ensuring data processors acting for Revenue have appropriate data protection and confidentiality clauses in place.