Sligo County Council has been ordered to bring its processing of personal data into compliance.
It’s after the Data Protection Commission announced the conclusion of an inquiry into the Council and has outlined a number of corrective measures.
The inquiry is one of several, addressing a broad range of issues pertaining to surveillance technologies deployed by State authorities.
This own-volition inquiry, which commenced in June 2018, sought to assess whether Sligo County Council was processing personal data in compliance with the GDPR and the Data Protection Act 2018.
The inquiry examined a number of the Council’s processing operations including its use of CCTV cameras in public places used for the purposes of prosecuting crime or other purposes.
Sligo County Council was found to be lacking a valid legal basis for processing of personal data from CCTV and Automated Number Plate Recognition cameras.
The Council also failed to erect appropriately worded and located signage in respect of the processing of personal data collected via CCTV cameras.
Corrective measures include a temporary ban on the processing of personal data through CCTV cameras and ANPR cameras at a number of locations until a valid legal basis can be identified.
An order to Sligo County Council to bring its processing of personal data into compliance taking certain actions specified in the decision and an administrative fine of €29,500.
