Newcastle Solicitors

What are the “principles” in the Data Protection Act ?

There are 8 principles in the data protection rules : -

1. Processing data –this must be done fairly and lawfully.

2. Relevant data only – the data collected should be relevant and necessary.

3. Use for original purpose – data should only be used for the purpose originally envisaged.

4. Accuracy – Data needs to be accurately collected and maintained in an up-to-date way.

5. Retention – Data should not be retained  for longer than is necessary

6. Use – Data should only be used in ways that do not breach an individual’s rights

7. Security – Data must be kept securely.

8. Transfer – Data is not permitted to be transmitted outside the EU unless protection is put in place

Individual rights in relation to data protection act

Some of the most important rights are :-

• the right to request information about data held on them
• to make a “Subject Access Request” (SAR) on payment of a maximum fee of £10

Data held on staff ?

Employees are protected by the Data Protection Act. In addition to the other rights described above it is important to note that if an employer monitors staff by way of emails or other communications and activities, the members of staff must be informed and given information as to why they are being monitored.