Data Protection Act (1998)

The Data Protection Act (1998) became Law and enforceable in March 2000. The Law places statutory obligations on all companies and organisations to ensure appropriate steps are taken to safeguard data and to dispose of it securely.

Principles

There are eight principles put in place under the Data Protection Act to make sure that information is handled properly.

These principles state that data must be:

  1. Fairly and lawfully processed.
  2. Processed for limited purposes.
  3. Adequate, relevant and not excessive.
  4. Accurate and kept up to date.
  5. Not kept for longer than is necessary.
  6. Processed in line with your rights.
  7. Secure and organisational measures taken against the unlawful processing and destruction.
  8. Not transferred to countries without adequate protection.

By law data controllers have comply with these principles, failure to do so could result in fines of up to £5000, while directors are likely to receive a criminal record.

Greenwise Environmental (the data processor) will ensure and guarantee that you (the data controller) fully comply with the latest legislation.

Our Data Protection Registration Number: Z9129798