The Data Protection Act 2018 is based on seven key principles. These principles are:
- Lawfulness, fairness, and transparency
- Purpose limitation
- Data minimization
- Accuracy
- Storage limitation
- Integrity and confidentiality (security)
- Accountability
These principles guide how personal data should be processed by organizations, ensuring that data is handled lawfully, transparently, securely, and with respect to individuals' rights.
