The Institute for the Public Services (IPS) processes personal data in accordance with the Data Protection Act (General Data Protection Regulation (EU) 2016/679 (GDPR) and the Data Protection Act, (Cap 586)) in order to carry out its functions pertaining to training and, where applicable, research., whether held in electronic or in manual form. 

Personal data from course application forms is collected and managed by staff of the Institute for the Public Services and used to invite applicants to attend training programmes. Personal data concerning applications for and attendance at courses is held by the Institute, and may be disclosed to Government departments, other public authorities, and third parties for public administration and human resource management purposes.

Some research projects may involve gathering personal data for specific purposes, such as conducting surveys. In such cases personal data is excluded from research reports.  Moreover, where possible, research data is collected in such a way as to exclude personal information, for example by enabling survey respondents to submit their responses anonymously.
IPS Retention Policy

The Records Retention Policy of the IPS can be viewed by clicking on this link​.

Your rights

You are entitled to know, free of charge, what information the Institute holds and processes about you and why; who has access to it; how it is kept up to date; and what the Institute is doing to comply with its obligations under the Data Protection Act.

The Data Protection Act sets down a formal procedure for dealing with data subject access requests, which the Institute for the Public Services follows.

If you wish to know what personal information about you is held by the Institute, please submit a request in writing to the Institute’s Data Controller. Include identification details such as your name, ID number and address. If necessary you will also be asked to present your identity card, driving licence or passport for identification purposes.
The Institute aims to comply as quickly as possible with requests by data subjects for access to their own personal information and will ensure that it is provided within a reasonable time, unless there is good reason for delay. When a request for access cannot be met within a reasonable time, the reason will be explained in writing to the data subject making the request.
All data subjects have the right to request that their information be amended, erased or not used in the event the data is incorrect.
Data Controller

The Data Controller of the Institute for the Public Services may be reached as follows: 
By post:
San Salvatore Bastion
Sa Maison Road
Floriana, FRN 1610
By email: