Please enable JavaScript.
Coggle requires JavaScript to display documents.
Data protection act (Personal data must adequate, relevant and not…
Data protection act
Personal data must adequate, relevant and not excessive.
This means that personal data that is stored should be just enough for the task to be carried out, only relevant to the task, and not include other data.
For example, a bank would need to hold a customer's name and address, but not any details of their qualification
-
-
-
-
-
-
Personal data must not be transferred to other countries outside the European Economic area that do not have adequate data protection.
Others countries around the world may not have the same level of data protection as the UK, so the Act states that personal data must not be sent to countries with lower levels of data protection than those in the UK