What is 'Personal Data'?

It refers to data about an individual who can be identified from a data.

Must all Organisations appoint a Data Supervisor?

All organisations, including sole proprietorships, are required to assign one person (a “data supervisor”) to be responsible for ensuring that the organisation complies with the data protection act, such as developing personal data policies for the organisation’s compliance with the data protection commission. This data supervisor may be a person whose scope of work solely relates to data protection or a person in the organisation who takes on this role as one of his multiple responsibilities.

Must the Data Supervisor be an employee based in Ghana?

The Data Protection Act, 2012 (Act 843) does not prescribe where the data supervisor should be based in. However, the data supervisor must be accessible to  the Data Protection Commission.

What are Data Processors and how are they different from other Data Controllers

An organisation shall be considered a data processor (intermediary) if it processes data on behalf of another organisation.

What are the Objectives of the DPC?

To protect the privacy of the individual and personal data by regulating the processing of personal information, and also provide the process to obtain, hold, use, or disclose personal information.