Some organisations may be falling foul of the Data Protection Act 1998 by failing to notify details of their personal data processing to the Information Commissioner’s Office (ICO). Notification is a legal requirement for every organisation that processes personal information (unless they are exempt), and failure to comply with this obligation is a criminal offence.
The (ICO) maintains a public register of organisations that process personal data, together
with details about the types of personal information they process and the purposes for
which they process it. The register and each organisation’s individual notification are publicly available to view via the ICO website.
Read more
