Your personal data - Data Privacy Notice
The Chief Constable of Essex Police is registered with the Information Commissioner as a ‘Data Controller’ for the purposes of the Data Protection Act 2018 (‘the Act’). He ensures that Essex Police handles all personal data in accordance with the Act.
EssexPolice takes its responsibility very seriously and takes great care to ensure that personal data is handled appropriately in order to secure and maintain individuals’ trust and confidence in the force.
You can contact the Chief Constable, or Essex Police’s Data Protection Officer at the following addresses: Chief Constable, Essex Police Headquarters, PO Box 2, Chelmsford, CM26DA or Data Protection Officer, Essex Police Headquarters, PO Box 2, Chelmsford, CM26DA.
Under the Data Protection Act 2018 (DPA), General Data Protection Regulations (GDPR), Environmental Information Regulations 2004 and the Freedom of Information Act 2000, you have a number of information rights.
The rights under the DPA and the GDPR are similar but not identical. Those under the DPA apply where personal data is used by Essex Police for law enforcement purposes, and those under the GDPR apply when it is used for other purposes.
Essex Police operates through intelligence led policing and so depends on information, and also the systems that the information is processed on.
The protection of information stored in manual and electronic systems is essential to the operation of the organisation and Kent and Essex Police must demonstrate compliance with National Policing Information Risk Management Team (NPIRMT) and Community Security Policy (CSP) for any existing or proposed information processing, regardless of where it comes from.
Other industry standards are also used where appropriate to ensure the protection of personal information is a priority, FIPS-140, ISO/27001, NIST, COBIT-5 and National Cyber Security Centre standards.
Electronic and digital security for new or existing systems which use or manage police information adhere to the Kent and Essex Police Baseline Security Requirement.
Organisational policy and procedures ensure the protection of police information and the controlled access to it. The design, operation, use and management of the technology must comply with statutory, regulatory, and contractual security requirements.
Technical safeguards are enforced within the Kent and Essex Police infrastructure such as firewalls, data encryption, end point detection and response solutions, protective monitoring, segregation of data and role based authorised system access. Physical access controls to our buildings and files require authorised and appropriate access and are overseen by security cameras.