Overseas Examinations Commission

Email: help@overseasexams.org.jm |Tel: (876)618-3721 | (876)926-6573

Serving the nation's education sector with Integrity, Reliability, Innovation & Efficiency (I.R.I.E).

Data Protection

Our commitment to safeguarding your personal information, in line with Jamaica's Data Protection Act (2020). We ensure privacy, transparency, and accountability in all our operations.

What Is Data Protection?

Responsible Collection

Data is collected lawfully and fairly, ensuring your personal information is treated with respect and purpose.

Intended Use

Your data is used only for the purposes for which it was collected and never for unauthorized activities.

Safe & Secure

We safeguard your data from unauthorized access or misuse through robust security measures.

Transparency & Access

You have the right to access and correct your personal data held by us at any time.

Our Data Protection Measures

Role-Based Access

Only authorized personnel can access specific types of information, ensuring your data is secure and appropriately handled.

Secure Storage

Data is stored safely, both physically and in encrypted cloud systems, meeting strict security standards.

Staff Training

Ongoing education for our team to maintain awareness and capacity in best practices for data privacy and security.

Audits & Assessments

Regular internal audits and data impact assessments help us maintain compliance and continuously improve our processes.

Incident Response

Clear protocols for rapid, transparent action in the event of any potential data breaches or security issues.

Your Data Rights

Right to Know

Understand how your data is collected and used within our systems.

Access & Correction

Request access to or correction of your personal data at any time.

Withdraw Consent

Revoke your consent for optional data uses by contacting us.

File Complaints

Contact the Information Commissioner if you believe your rights are violated.

Data Protection Officer

Our appointed Data Protection Officer (DPO) ensures OEC's full compliance with the Data Protection Act, oversees staff training, policy development, and communication around privacy matters.



Transparency and Updates

We are committed to keeping stakeholders informed. Please check this page regularly for policy updates, security advisories, and tips on protecting your own digital information.

Frequently Asked Questions

1. What kind of personal data does the OEC collect? +

We collect data such as student names, ID numbers, school/institution details, exam results, and contact information needed to administer exams.

2. Why does OEC need my personal information? +

To register you for exams, deliver results, communicate important updates, and meet regulatory requirements.

3. How is my information kept secure? +

Via encryption, secure databases, access controls, staff training, and regular audits.

4. Who has access to my information? +

Only authorized OEC staff or trusted service providers operating under strict agreements.

5. How long is my data kept? +

Only as long as needed for service and legal purposes, after which it is securely deleted or anonymized.

6. Can I see the data OEC has about me? +

Yes. Contact our Data Protection Officer (DPO) to request access to your personal data.

7. What if I want to correct my information? +

You can request corrections at any time. We may require documentation to verify certain changes.

8. What if I think my data has been misused? +

Contact our DPO immediately at (876) 618-3721. We have an incident response plan in place to address issues quickly and transparently.

9. How do I give or withdraw consent? +

Via written or digital request. Some services require explicit consent to participate, and you can withdraw that consent at any time.

10. Who oversees data protection in Jamaica? +

The Office of the Information Commissioner (OIC). They enforce the Data Protection Act and ensure companies comply with its standards.

11. What is expected of companies under the Jamaica Data Protection Act? +

Under the Data Protection Act of Jamaica (2020), companies and public bodies must follow eight data protection standards to ensure responsible, transparent, and secure handling of personal data:

  • 1. Lawful and Fair Processing – Collect and process data fairly and lawfully with transparency and consent where applicable.
  • 2. Purpose Limitation – Use data only for specific, explicit, and legitimate purposes and not in incompatible ways without further consent.
  • 3. Data Minimization – Collect only the minimum data necessary for the intended purpose, avoiding excessive or irrelevant data.
  • 4. Accuracy – Ensure personal data is accurate and kept up to date, correcting or deleting inaccurate information as needed.
  • 5. Storage Limitation – Retain data only as long as necessary for its purpose or legal obligations, then securely delete or anonymize it.
  • 6. Rights of Data Subjects – Uphold individuals’ rights to be informed, access, correct, delete, object, withdraw consent, and lodge complaints.
  • 7. Security and Breach Notification – Implement appropriate security measures and promptly notify the Information Commissioner and affected individuals in case of breaches.
  • 8. Cross-Border Data Transfers – Ensure personal data is only transferred outside Jamaica when adequate protection or appropriate safeguards are in place.

These requirements help protect individuals’ privacy and ensure trust in how organizations handle personal information.