Data Protection Act, 2012
28.
29.
30.
31.
32.
33.
34.
Security measures
Data processed by data processor or an authorised person
Data processor to comply with security measures
Notification of security compromises
Access to personal information
Correction of personal data
Manner of access
Rights of data subjects and others
35. Right of access to personal data
36. Credit bureau as data controller
Processing of special personal data
37.
38.
39.
40.
41.
42.
43.
44.
45.
Processing of special personal data prohibited
Exemption related to religious or philosophical beliefs of data subject
Right to prevent processing of personal data
Right to prevent processing of personal data for direct marketing
Rights in relation to automated decision-taking
Rights in relation to exempt manual data
Compensation for failure to comply
Rectification, blocking, erasure and destruction of personal data
Application of the Act
Data Protection Register
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
Establishment of Data Protection Register
Application for registration
Right to refuse registration
Grant of registration
Renewal of registration
Removal from Register
Cancellation of registration
Processing of personal data without registration prohibited
Access by the public
Duty to notify changes
Failure to register