(1) If a Magistrate is satisfied by information on oath supplied by the Commissioner or an authorized officer that there are reasonable grounds for suspecting that —
(a) a data controller has contravened or is contravening any of the data protection principles; or
(b) an offence under this Act has been or is being committed,
and that evidence of the contravention or of the commission of the offence is to be found on any premises specified by the Commissioner or an authorized officer, the Magistrate may issue a warrant authorizing the entry and search of the premises.
(2) A warrant issued under subsection (1) must authorize a police officer accompanied by the Commissioner or an authorized officer at all reasonable times within 7 days of the date of the warrant to enter the premises to —
(a) request the owner or occupier to produce any document, record or data;
(b) examine any document, record or data and take copies or extracts from the document record or data;
(c) inspect, examine, operate and test any data equipment found on the premises;
(d) request the owner of the premises entered into, or any person employed by him or her, or any other person on the premises, to give to the authorized officer all reasonable assistance and to answer all reasonable questions either orally or in writing.
(3) The police officer shall at the time of execution of the warrant, show the warrant and supply a copy of the warrant to the person who owns or occupies the premises in respect of which a warrant is issued.
(4) The Commissioner or an authorized officer shall provide an inventory of the type of data collected or seized to the data controller or the owner or occupier of premises who supplies the data to the Commissioner or the authorized officer.