Almost organisations holding or using personal information about their clients, employees or other people, are legally obliged to protect that information.
Under the Data Protection Act 1998 (DPA) organisations must:
- use personal information fairly and lawfully
- collect only the information necessary for a specific purpose(s)
- ensure it is relevant, accurate and up to date
- only hold as much as is needed and only for as long as is needed
- allow the subject of the information to see it on request and
- keep it secure
Good information handling makes good business sense, and enhances a business’ reputation, increases customer and employee confidence, and by ensuring that personal information is accurate, relevant and safe, save both time and money.
Why not take our data protection test to assess your organisation’s compliance with the DPA? It’s quick and easy to use and can be found here.