Data Protection Act
- Data must be used fairly and lawfully
- Data must be used for limited, specifically stated purposes
- Data must be used in a way that is adequate, relevant and not excessive
- Data must be accurate
- Data must not be kept for no longer than is absolutely necessary
- Data must be handled according to people’s data protection rights
- Data must be kept safe and secure
- Data must not be transferred outside the UK without adequate protection
There is stronger legal protection for more sensitive information, such as:
- ethnic background
- political opinions
- religious beliefs
- sexual health
- criminal records
Find out what data an organisation has about you
The Data Protection Act gives you the right to find out what information the government and other organisations stores about you.
Write to the organisation and ask for a copy of the information they hold about you. If you don’t know who to write to, address your letter to the company secretary.
The organisation is legally required to give you a copy of the information they hold about you if you request it.