Information Privacy Law
05.10.19
Information privacy law or data protection laws prohibit the disclosure or misuse of information about private individuals. The UK has adopted comprehensive data protection laws under the General Data Protection Regulation, which came into force since May 25, 2018.
The basic principles of data protection are:
- Data should only be collected for a stated purpose. It should be deleted when it is no longer needed for the stated purpose.
- Information collected by an individual cannot be disclosed to other organisations or individuals unless they have the consent of the individual, or disclosure is otherwise permitted by law.
- Information kept in respect of an individual should be accurate and up to date.
- There should be a process that enables individuals to review data about them, to ensure it is accurate and up to date.
- Some data comes under a category of being too sensitive to be store, unless there are very specific circumstances (e.g., sexual orientation, religion).
HOW WE CAN HELP
We can provide specialist legal advice on all aspects of information law and data protection compliance, including subject access requests, social media use, security breaches and more. For specialist legal advice on any data protection law issue, contact us or request a callback for information and advice.