Skip to main content
Normal View

Data Protection

Dáil Éireann Debate, Tuesday - 29 June 2021

Tuesday, 29 June 2021

Questions (533)

Fergus O'Dowd

Fergus O'Dowd

Fergus O'Dowd

Question:

533. Deputy Fergus O'Dowd asked the Minister for Health if his Department is fully compliant with GDPR EU requirements and the EU network and Information Security Directive and standards with respect to his Department’s IT infrastructure including article 29 of GDPR which requires that data processors access only the data they need for their task; if ISO 27001 annex 9 standards on privileged access are fully met; and if he will make a statement on the matter. [27302/21]

View answer

Written answers

Stephen Donnelly

Minister for Health

My Department is committed to protecting the rights and privacy of data subjects and adhering to obligations under data protection legislation. The Department of Health processes personal data to carry out the tasks required for the performance of its functions and to comply with certain legal obligations, and may receive personal data, including health data, directly from members of the public and from elected representatives seeking information or a service.

Improved IT security measures have already been put in place within my Department. A complete security review of the infrastructure is being finalised to confirm access controls and specialised software has been installed to mitigate against malicious software.

My Department continues to liaise closely with our security partner, the Office of the Government Chief Information Officer and the National Cyber Security Centre to ensure conformity with standards, and that best practice is followed in relation to all aspects of Cybersecurity.

Top
Share