The Personal Data Protection Policy is built upon the Personal Data Protection Act, which governs the collection, use and disclosure of personal data. The act addresses these concerns, by ensuring that individuals’ personal data are safe guarded against misuse by regulating the processing and management of personal data
The Institute is responsible for the personal data in its possession or under its control, and will develop and implement policies and practices that are necessary for the Institute to meet the obligations under the Act.
The Institute is to ensure that individual data is secure at all times and safe from unauthorized access, alteration, use or loss. It is the responsibility of all staff to adhere to the policy of data collection, to provide a supportive environment and culture of best practice processing of personal data.