Summary Of Data Protection Act

On March 1, 2000 the majority of the Data Protection Act went into effect. This act was a revised form of the Data Protection Act from 1984. There are many parts and sections to this act but in its basic form it gives guidelines to the use of information either on a computer system or sometimes manual records. It states that organizations that collect, store and use personal data must be forthcoming about the information. We can easily summarize this act.

There are eight principles to the Data Protection Act. They are as follows:

* Fairly and lawfully processed * Processed for limited purposes * Adequate, relevant and not excessive * Accurate * Not kept for longer than is necessary * Processed in line with your rights * Secure * Not transferred to countries without adequate protection

Personal data is defined as information about any living individual who can be identified by any information the organization is in possession of. This can be information such as name, address, phone number, photographs or images, etc.

Sensitive personal data is also protected by the Data Protection Act. Sensitive personal data would be such things regarding political or religious beliefs, sexual orientation, ethnic origin, and physical or mental health conditions. This information has sub sections that must be followed.

All data must be obtained in a legal and just manner. The subject must give consent or the processing of data must be necessary for the reasonable interests of the organization. The Data Protection Act says all personal data must be kept accurate and up to date.

Thanks to the Data Protection Act the individual has certain rights regarding their personal data. The individual must be able to access their own information. They may be charged a fee and may be required to validate their identity. They may also be required to make a written request. But the organization must allow them access.

Another right the individual has is being allowed to object to certain processing that would cause them damage or distress. The individual also is authorized to prevent processing for the purpose of direct marketing. They may also take action for any compensation if they are to suffer damage done by any neglect from the organization. The individual may also rectify any personal data that is inaccurate.

There are many rights that the Data Protection Act has enabled individuals to have. After many years with basic rights and regulations instated, it was extremely beneficial to have the Act revised. The individual and their personal information are now protected. And in this age of worldwide access, that is exactly what we need.