On October 25, 2016, the UK Information Commissioner’s Office (ICO) issued a revised code of practice and checklist on privacy notices, transparency and control.
The code helps organizations required by the Data Protection Act 1998 (DPA) to “collect information about people, whether directly or indirectly” to provide transparent and accessible “privacy notices” to data subjects.
The code provides useful good practice tips on
The ICO also provides a list of good and bad examples of privacy notices, as well as a useful privacy notice checklist.
Finally, the ICO makes users aware that “data controllers may need to include more information in their privacy notices” to comply with the GDPR regime. However, the ICO states, “if you follow the good practice recommendations in this code you will be well placed to comply with the GDPR regime” (see here).
Read the Code here.
For more information, Francesca Giannoni-Crystal