Data Protection Act 1998

UK law that protects patient information from unauthorised access. The Act requires that data acquired has prior informed consent, that it is stored securely with safeguards to avoid unauthorised access of the data, and can only be released under exceptional circumstances—e.g., for criminal investigations. The Act allows individuals to access information of which they are the subject—e.g., their own medical records.

Eight Principles of Data Protection Act
Personal data must be:
(1) Processed fairly and lawfully;
(2) Processed for specific purposes and in an appropriate manner;
(3) Adequate, relevant and not excessive;
(4) Accurate and up-to-date;
(5) Not kept for longer than necessary;
(6) Processed in accordance with the rights of the data subjects;
(7) Protected by appropriate security;
(8) Not transferred outside the European Economic Area without adequate controls.

Mentioned in ?

References in periodicals archive ?

It will also seek to address the ethical, legal and practical issues surrounding the disclosure of information to post-care adults within the constraints of the Data Protection Act 1998 and explore how these can be managed to ensure that they can obtain the information they need about their family background and time in care.

Newspoints

UK organizations conducting electronic commerce could potentially end up being in breach of the UK Data Protection Act 1998 if they do not make it clear to customers that cookies are collecting their personal data.

Cyber law: case studies in the SME environment

The UK Data Protection Act 1998 took effect on March 1, 2000, but its provisions are incremental and organizations do not have to fully comply for 7 years.

The future of privacy in law enforcement: the United Kingdom's experience

The document, published by the Information Commissioner, sets out how employers should comply with the Data Protection Act 1998 and encourages respect for Article 8 of the Human Rights Act 1998, which covers the right to respect for personal correspondence.

CBI denounces 'confusing' data code

The Data Protection Act 1998 became law on March 1 last year but only stores with sophisticated, digital cameras had to register then.

CAMERAS ROLL - at a cost

Three out of four UK businesses are unprepared for the introduction of the Data Protection Act 1998 next month, claims a report published yesterday.

UK Companies Unprepared for Data Protection Act

He was appointed by HM the Queen and held independent status, reporting directly to Parliament, with a range of regulatory, promotional and advisory responsibilities under the Data Protection Act 1998, the Freedom of Information Act 2000 and related laws.

Richard Thomas CBE to Join Board of International Association of Privacy Professionals

In May 2018, the EU General Data Protection Regulation (GDPR) is replacing the previous Data Protection Act 1998, which regulates the handling of personal data.

Is your business ready for new data protection laws? ADVERTISING FEATURE

Undertake an assessment of IRUK compliance with the requirements of the UK Data Protection Act 1998 (DPA) sufficient to identify and assess major compliance risks* and recommend a roadmap for IRUK to implement actions for improved DPA compliance in swift and sustainable manner.

Data Protection Assessment Consultancy

Davies is also accused of five separate counts of breaching the Data Protection Act 1998.

Detective to face sex charges trial

It also called for Google to provide investigators with copies of the original software design document and what measures were introduced to prevent breaches of the Data Protection Act 1998.

New inquiry into Google data spies; Street View cars took emails and passwords

Cop accused of snooping on people's private data From Page 1 all allege breaches of the Data Protection Act 1998.