Law Enforcement Data Processing and Part 3 of the Data Protection Act 2018

Target Audience

• Law enforcement professionals
• Data protection officers in criminal justice or public safety roles
• Legal and compliance personnel
• Information governance and records managers
• Public authority personnel involved in law enforcement processing

By the end of the course, delegates will:

•        Understand the scope and principles of Part 3 of the Data Protection Act 2018   
•        Be able to distinguish between general and law enforcement data processing    
•        Identify compliance requirements specific to law enforcement purposes    
•        Understand rights of data subjects under Part 3    
•        Explore appropriate governance, safeguards, and practical implementation    

Day 1: Introduction to Law Enforcement Processing

• Overview of the UK Data Protection Framework
• Key Concepts: ‘Competent Authority’, ‘Law Enforcement Purpose’, and ‘Appropriate Policy Document’
• Applicability of Part 3 DPA 2018 vs UK GDPR
• Lawful Bases for Processing under Part 3
• Data Protection Principles (under Part 3)
• Specific Conditions for Sensitive Processing
• Case Study: Police and Non-Police Authority Examples

Day 2: Rights, Governance, and Accountability

• Rights of Individuals under Part 3
  • Access, Rectification, Erasure, Restriction
  • Limitations and Derogations
• Data Protection by Design and Default
• Data Protection Impact Assessments (specific to law enforcement)
• Logging and Record-Keeping Obligations
• Transfers of Law Enforcement Data (domestic and international)
• The Role of the ICO and Enforcement Provisions
• Governance, Policies, and Accountability Measures
• Interactive Exercise: Compliance Planning in a Law Enforcement Setting