Law: Data Protection Principles

Under the Data Protection Act, there are eight principles that are regards as the “core” of the DPA; they are defined  in Part 1, Schedule 1 of the Act.

These principles are enforced by the ICO.

The eight principles are listed below

  1. Personal data shall be processed fairly and lawfully
  2. Personal data shall be obtained only for one or more specified and lawful purposes, and shall not be further processed in any manner incompatible with that purpose or those purposes.
  3. Personal data shall be adequate, relevant and not excessive in relation to the purpose or purposes for which they are processed.
  4. Personal data shall be accurate and, where necessary, kept up to date.
  5. Personal data processed for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
  6. Personal data shall be processed in accordance with the rights of data subjects under this Act.
  7. Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data.
  8. Personal data shall not be transferred to a country or territory outside the European Economic Area unless that country or territory ensures an adequate level of protection for the rights and freedoms of data subjects in relation to the processing of personal data.
Advertisements

3 Responses to “Law: Data Protection Principles”

  1. Law: Data Protection Act Section Excemptions « Data - Where is it? Says:

    […] for reasons of “national security” this means that data is no longer guarded under the data protection principles, Parts II, III and V of the act, or section 55 of the data protection act. The exemption to Section […]

  2. Law: Data Protection Act - 8th Principle « Data - Where is it? Says:

    […] on March 2, 2009 by Rob The Data Protection Act, whose enforcement comes under the ICO, has 8 core principles. The 8th principle, the one which most effects those in the electronic discovery industry, relates […]

  3. Electronic Discovery: Reviewing UK data from outside the EU « Data - Where is it? Says:

    […] Data Protection Act has 8 core principles, it is the eighth principle which is most relevant in this case.   This principle states that […]


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: