Data Protection Act 2018 controls how your personal information is used by organisations, businesses or the government. It is the United Kingdom's implementation of the General Data Protection Regulation (GDPR).
Under the Data Protection Act 2018, you have the right to find out what information the government and other organisations store about you. These include the right to:
bEveryone responsible for using personal data has to follow strict rules called ‘data protection principles’. They must make sure the information is:
There is stronger legal protection for more sensitive information, such as:
There are separate safeguards for personal data relating to criminal convictions and offences.