Version No: | 1 (c) |
Version Issue Date: | 10 September 2025 |
Supersedes Version: | 1 (b) |
Approved by | Director (Finance, Personnel and Corporate Affairs) |
Created Date | April 2024 |
Last Review | August 2025 |
Next Review | August 2026 |
Plan Owner | NIHRC |
Version Control | Date and details of change |
Version 1 | Approved by Director (Finance, Personnel and Corporate Affairs) |
Reviewed April 2023 | April 2023 – amends made to include missing Appendix 4 – complying with a Subject Access Request |
Version 1 (a) | Appendix 4 added. |
Reviewed April 2024 | April 2024 – amend made to remove reference to Appendix 5 as not required. |
Version 1 (b) | Reference to Appendix 5 removed. |
Reviewed August 2025 | August 2025 – amended to reflect changes in privacy notice |
Version 1 (c) | Privacy notice updated to reflect amends |
Foreword
This policy and supporting procedures will inform Northern Ireland Human Rights Commission (NIHRC) employees and Commissioners about the key data protection issues, including General Data Protection Regulation (GDPR). It sets out information needed to ensure that the NIHRC complies with its data obligations and reference further guidance should that be necessary.
This policy and supporting procedures aim to ensure that all staff, stakeholders and third parties are aware of both their Data Protection rights and responsibilities including those arising from GDPR and to minimise the risk to the NIHRC of any Data Protection potential breaches.
All staff have a part to play in managing personal information safely, so are required to read this policy. The Data Protection Officer is also available to provide further advice to ensure that NIHRC complies with the GDPR.
Thank you.