7 Key Principles of Data Protection Act 2018

The 7 Key Principles of Data Protection Act 2018

1) Lawfulness, fairness and transparency 2) Purpose limitation 3) Data minimisation 4) Accuracy 5) Storage Limitation 6) Security 7) Accountability

What are the 7 key principles of the Data Protection Act 2018?

There must be a reason for collecting the data, laws must not be breached with data, data must only be used in a way that is fair, person collecting data must be honest with people from start

What does the ‘Lawfulness, fairness and transparency’ principle cover?

purpose for collecting data must be clear from start, purpose must be documented, data must not be used for other purpose

What does the ‘Purpose limitation’ principle cover?

data being processed must be: adequate, relevant and limited to what is necessary

What does the ‘Data minimisation’ principle cover?

steps must be taken to make sure data is correct, data must be kept up to date, incorrect data must be erased, challenges to accuracy must be considered

What does the ‘Accuracy’ principle cover?

data must not be kept for longer than necessary, how long data is kept must be justified and specified in policy statement, data no longer needed should be erased in periodic review, individuals can ask for data to be erased, data can be kept for longer if it is for public interest

What does the ‘Storage limitation’ principle cover?

must be adequate security measures to protect data

What does the ‘Security’ principle cover?

data holder must take responsibility for how data is used and for compliance with other principles

What does the ‘Accountability‘ principle cover?