On 16 August 2012, the ICO published guidance on deleting personal data under the Data Protection Act 1998 (DPA). The guidance describes how organisations can ensure compliance with the DPA when they ...

New guidance defines when electronically held personal data is "beyond use" once deleted. As part of its mission to assist companies to understand and fulfil their obligations under the UK's Data ...

Most people associate data protection with legislation, most recently the Data Protection Act 1998 and the General Data Protection Regulation 2016 (GDPR). However, it should be appreciated that this ...

The Data Protection Act (DPA) 2018 is the UK’s data protection law. It brings the EU’s General Data Protection Regulation (GDPR) into the UK’s legal system and defines how personal data should be ...

Information commissioner Elizabeth Denham has welcomed the UK’s Data Protection Act 2018, which has been given Royal Assent after nearly a year of debate and consultation to provide a new privacy ...

The Information Commissioner has published an enforcement strategy setting out a new and more pro-active policy for following up on breaches of the Data Protection Act 1998. Collection of data on ...

The European Commission on Friday issued its first assessment of the 1995 Data Protection Directive, arguing that data protection legislation has achieved many of its aims, but admitting it still ...

British Council has been found in breach of the Data Protection Act after losing an unencrypted computer disc containing the sensitive data of 2,000 employees. In December 2008, the disc went missing ...