General Data Protection Regulation

Guide to Data Protection Regulations

Generic Data Protection Rules

£8.7 million

£17.5 million

There is no maximum fine

A piece of data

A topic in a data file

A natural identifiable person

An individual

Your name and address only

Any info relating to an identified or identifiable person

Information that you own

Only medical and religious data

Work history

Company registration detail

Company email address

Health data

24 hours

72 hours

There is no maximum notification time

As soon as possible

Contact the ICO before the processing starts

Tell the data subject before processing starts

Start processing and keep monitoring

Consent

Vital Interest

Legitimate Interest

Data Retention

Phishing

Tailgating

Trojon Horse

Dumpster diving