We are independent & ad-supported. We may earn a commission for purchases made through our links.
Advertiser Disclosure
Our website is an independent, advertising-supported platform. We provide our content free of charge to our readers, and to keep it that way, we rely on revenue generated through advertisements and affiliate partnerships. This means that when you click on certain links on our site and make a purchase, we may earn a commission. Learn more.
How We Make Money
We sustain our operations through affiliate commissions and advertising. If you click on an affiliate link and make a purchase, we may receive a commission from the merchant at no additional cost to you. We also display advertisements on our website, which help generate revenue to support our work and keep our content free for readers. Our editorial team operates independently of our advertising and affiliate partnerships to ensure that our content remains unbiased and focused on providing you with the best information and recommendations based on thorough research and honest evaluations. To remain transparent, we’ve provided a list of our current affiliate partners here.
Technology

Our Promise to you

Founded in 2002, our company has been a trusted resource for readers seeking informative and engaging content. Our dedication to quality remains unwavering—and will never change. We follow a strict editorial policy, ensuring that our content is authored by highly qualified professionals and edited by subject matter experts. This guarantees that everything we publish is objective, accurate, and trustworthy.

Over the years, we've refined our approach to cover a wide range of topics, providing readers with reliable and practical advice to enhance their knowledge and skills. That's why millions of readers turn to us each year. Join us in celebrating the joy of learning, guided by standards you can trust.

What is the Data Protection Act?

By Toni Henthorn
Updated: May 17, 2024
Views: 10,805
Share

The Data Protection Act, ratified by the United Kingdom Parliament in 1998, protects individual rights to privacy regarding their personal data. It allows individuals to limit the use of personal information about themselves, including, in some cases, the manner of collection, storage, processing, and distribution. In compliance with the European Directive of 1995, the Data Protection Act sets forth eight key principles for the care and use of personal data collected and compiled by companies, researchers, and government agencies. The Data Protection Act compels all data controllers not only to register with the Information Commissioner, but also to abide by the data protection principles in the act.

In accordance with the Data Protection Act, data controllers must disclose to the Information Commissioner their use of personal data, including what types of information that they collect and for what purpose they gather that information. Additionally, the data must be collected and processed fairly and lawfully, taking care to ensure that record handling is consistent with the stated purpose to the Information Commissioner. The Data Protection Act also requires that the information be accurate and up to date as much as possible. Firms must implement appropriate security measures to prevent unauthorized or prohibited use of personal data, as well as accidental loss or damage to the information.

The Data Protection Act also defines the rights of those individuals who are subjects of the information in question. For a subject access fee, he has the right to view the data, request the amendment of any inaccuracies, and control the dispersal of his information to third parties. He may also obtain a description of the purposes for which a data controller is holding his material. Data controllers must comply with subject access requests within 40 days.

If a data controller fails to act in accordance with the Data Protection Act, there are a number of criminal and civil penalties under Sections 21, 55, and 56. Notable exemptions to the Act include family data collections, such as personal address books or telephone listings, tax collection efforts, and criminal investigations. Furthermore, data processing completed for the purpose of national security is exempt.

In order for a data controller to handle fairly compiled information pursuant to the Data Protection Act, he must hold only that information that meets one of six conditions. Processing is acceptable if the data subject has given his consent. It is also authorized when such processing fulfills a legal obligation, contract, or essential public function. Finally, data processing that protects or pursues the vital or legitimate interests of the subject himself or another third party is also permissible.

Share
WiseGeek is dedicated to providing accurate and trustworthy information. We carefully select reputable sources and employ a rigorous fact-checking process to maintain the highest standards. To learn more about our commitment to accuracy, read our editorial process.

Editors' Picks

Discussion Comments
Share
https://www.wisegeek.net/what-is-the-data-protection-act.htm
Copy this link
WiseGeek, in your inbox

Our latest articles, guides, and more, delivered daily.

WiseGeek, in your inbox

Our latest articles, guides, and more, delivered daily.