Browse Definitions :
Definition

U.K. Data Protection Act 1998 (DPA 1998)

The Data Protection Act 1998 (DPA 1998) is an act of the United Kingdom (UK) Parliament defining the ways in which information about living people may be legally used and handled. The main intent is to protect individuals against misuse or abuse of information about them. The DPA was first composed in 1984 and was updated in 1998.

The text of DPA 1998 contains six major sections called Parts, followed by 16 explanatory notes called Schedules. The Parts outline the basic rights of data subjects, methods in which data may be handled by those who possess it, special exemptions and modes of enforcement. The Schedules explain the Parts in greater detail and elaborate on diverse contingencies and legal interpretations.

The fundamental principles of DPA 1998 specify that personal data must:

  • be processed fairly and lawfully.
  • be obtained only for lawful purposes and not processed in any manner incompatible with those purposes.
  • be adequate, relevant and not excessive.
  • be accurate and current.
  • not be retained for longer than necessary.
  • be processed in accordance with the rights and freedoms of data subjects.
  • be protected against unauthorized or unlawful processing and against accidental loss, destruction or damage.
  • not be transferred to a country or territory outside the European Economic Area unless that country or territory protects the rights and freedoms of the data subjects.

 

Getting started with the Data Protection Act 1998
To explore how DPA 1998 is used in the enterprise, here are some additional resources:
The 'appropriate' way to comply with Data Protection Act 1998: Are you compliant with the U.K. Data Protection Act? Meeting the standards can be a challenge, and even though all companies should be compliant, some aren't. Get information on the regulation's eight principles and learn how to comply.
Complying with the UK Data Protection Act of 1998: Learn about the basic requirements of the U.K. Data Protection Act of 1998 and the minimum every organization should do in terms of data storage and protection to comply.
This was last updated in January 2008

Continue Reading About U.K. Data Protection Act 1998 (DPA 1998)

SearchCompliance
  • pure risk

    Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.

  • risk reporting

    Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.

  • risk map (risk heat map)

    A risk map (risk heat map) is a data visualization tool for communicating specific risks an organization faces.

SearchSecurity
  • encryption key

    In cryptography, an encryption key is a variable value that is applied using an algorithm to a string or block of unencrypted ...

  • payload (computing)

    In computing, a payload is the carrying capacity of a packet or other transmission data unit.

  • script kiddie

    Script kiddie is a derogative term that computer hackers coined to refer to immature, but often just as dangerous, exploiters of ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • fault-tolerant

    Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...

  • synchronous replication

    Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage
  • cloud NAS (cloud network attached storage)

    Cloud NAS (network attached storage) is remote storage that is accessed over the internet as if it is local.

  • object storage

    Object storage, also called object-based storage, is an approach to addressing and manipulating data storage as discrete units, ...

  • gigabyte (GB)

    A gigabyte (GB) -- pronounced with two hard Gs -- is a unit of data storage capacity that is roughly equivalent to 1 billion ...

Close