Awdurdod annibynnol y Deyrnas Unedig a sefydlwyd i gynnal hawliau gwybodaeth er budd y cyhoedd, annog cyrff cyhoeddus i fod yn agored a hybu preifatrwydd data i unigolion.

I sefydliadau

Find out about your obligations and how to comply, including protecting personal information, and providing access to official information.

connections between countries

Data Protection at the end of the transition period

Guidance and resources for organisations after the transition period ends

Guides to the legislation

Find out about your obligations and how to comply under the Acts.

Guide to the UK General Data Protection Regulation (UK GDPR)

The GDPR, as it applies in the UK. It applies to most UK businesses and organisations.

Data protection after the end of the Brexit transition period for small businesses and organisations

Understand the implications for organisations and how to plan ahead

Key data protection themes

Find information here about Artificial Intelligence and our Codes

Canllaw i Ddiogelu Data

Find out about your obligations under the DPA 2018 and the UK GDPR, including law enforcement processing.

Freedom of information

If you are a public authority you have a legal obligation to make official information available under the Freedom of Information Act.

Electronic communications and marketing

Sending marketing messages by phone, fax, email or text? Using cookies? Providing electronic communications services to the public? Find out what you need to do to comply.

Guide to LE Processing

Data protection guidance for organisations with law enforcement functions, including police, justice and surveillance organisations.

Guide to Intelligence Services processing

Data protection guidance for the intelligence services.

Environmental information

Find out your obligations for environmental information.

eIDAS

If you provide trust services such as electronic signatures, electronic time stamps and website authentication certificates, you have obligations under eIDAS.

The Guide to NIS

Some digital service providers have obligations under the Network and Information Systems Regulations 2018.

Spatial information

If you are a public authority that holds spatial data, you have a legal obligation to make that information available.

Re-use of information

Find out about your obligations around the re-use of public sector information, and the ICO’s role.

Personal data in political campaigning

This guidance highlights the importance of processing personal data in compliance with data protection law during political campaigning.

Resources and support

Improve and promote information rights practices in your organisation