Data Protection Act 1998

UK law that protects patient information from unauthorised access. The Act requires that data acquired has prior informed consent, that it is stored securely with safeguards to avoid unauthorised access of the data, and can only be released under exceptional circumstances—e.g., for criminal investigations. The Act allows individuals to access information of which they are the subject—e.g., their own medical records.

Eight Principles of Data Protection Act
Personal data must be:
(1) Processed fairly and lawfully;
(2) Processed for specific purposes and in an appropriate manner;
(3) Adequate, relevant and not excessive;
(4) Accurate and up-to-date;
(5) Not kept for longer than necessary;
(6) Processed in accordance with the rights of the data subjects;
(7) Protected by appropriate security;
(8) Not transferred outside the European Economic Area without adequate controls.

Mentioned in ?

References in periodicals archive ?

It will also seek to address the ethical, legal and practical issues surrounding the disclosure of information to post-care adults within the constraints of the Data Protection Act 1998 and explore how these can be managed to ensure that they can obtain the information they need about their family background and time in care.

Newspoints

Organisations still holding paper records will be in breach of the The data Protection Act 1998 by October 2007 if all personal data held in company records has not been be digitized and stored securely.

IT news and products; data storage warning

Data Protection Act 1998, Chapter 29 [Electronic version].

Building an Internet archive system for the British Broadcasting Corporation

The UK Data Protection Act 1998 (DPA, 1998) contains three principles of particular relevance to electronic commerce transactions over the Internet for UK SMEs.

Cyber law: case studies in the SME environment

The UK Data Protection Act 1998 took effect on March 1, 2000, but its provisions are incremental and organizations do not have to fully comply for 7 years.

The future of privacy in law enforcement: the United Kingdom's experience

The document, published by the Information Commissioner, sets out how employers should comply with the Data Protection Act 1998 and encourages respect for Article 8 of the Human Rights Act 1998, which covers the right to respect for personal correspondence.

CBI denounces 'confusing' data code

Three out of four UK businesses are unprepared for the introduction of the Data Protection Act 1998 next month, claims a report published yesterday.

UK Companies Unprepared for Data Protection Act

Because of when the breach happened, the ICO's investigation was carried out under the Data Protection Act 1998. It considered the circumstances under which the personal data of approximately 500M international users of Yahoo!'s services was placed at risk.

UK watchdog fines Yahoo! UK Services GBP250,000 for 2014 data breach

In May 2018, the EU General Data Protection Regulation (GDPR) is replacing the previous Data Protection Act 1998, which regulates the handling of personal data.

Is your business ready for new data protection laws? ADVERTISING FEATURE

Davies is also accused of five separate counts of breaching the Data Protection Act 1998.

Detective to face sex charges trial

It also called for Google to provide investigators with copies of the original software design document and what measures were introduced to prevent breaches of the Data Protection Act 1998.

New inquiry into Google data spies; Street View cars took emails and passwords

Cop accused of snooping on people's private data From Page 1 all allege breaches of the Data Protection Act 1998.