GDPR
The General Data Protection Regulation replaces the EU directive 95/46/EC and has been incorporated into the Data Protection Act 2018.
The GDPR sets out seven key principles:
-
Lawfulness, fairness and transparency
-
Purpose limitation
-
Data minimisation
-
Accuracy
-
Storage limitation
-
Integrity and confidentiality (security)
-
Accountability
-
These principles should lie at the heart of your approach to processing personal data.