Data Processors And Data Commissioner

Data Protection Commissioner

Mobile Paper shredding throughout Ireland and the companies that provide confidential document destruction are governed by Data Protection laws and the Data Protection commissioner. This can be broken down into two parts.

Data Processors

Security in Shredding are registered Data Processors with the Data Protection Commissioners Office. So what is a Data Processor one may ask; a Data Processor is a company, organisation or person who processes data on behalf of a Data Controller. “This does not include employees who process data in the course of their employment.”

“Cloud providers are also generally Data Processors.”

“It is possible for one company or person to be both a data controller and a data processor, in respect of distinct sets of personal data. For example, a payroll company would be the data controller in respect of the data about its own staff, but would be the data processor in respect of the staff payroll data it is processing for its client companies.”

“A data processor is distinct from the data controller for whom they are processing the personal data. An employee of a data controller, or a section or unit within a company which is processing personal data for the company as a whole, is not a “data processor.” However, someone who is not employed by the data controller, but is contracted to provide a particular data processing service (such as a Security in Shredding providing and conducting a confidential secure data destruction service) would be a data processor.

Responsibilities of data processors

The Data Processor must only process personal data on the instructions of the Data Controller, for example, the Client (the Data Controller) schedules an on-site service delivery where by Security in Shredding (the Data Processor) arrives on-site to conduct on-site shredding of the clearly identified material for destruction. The responsibilities concern the necessity to keep personal data secure from unauthorised access, disclosure, or destruction unless confirmation is received prior to doing so.

“In addition all data processors, whose business consists wholly or partly in processing personal data on behalf of data controllers who are required to register, are also required to register with the Data Protection Commissioner as a data processor.”

For further information about Data Processors please click on any of the following website addresses;

Also available in the Limerick area and please visit: