The ICO exists to empower you through information.
Key definitions, what is considered personal information and what "identifiable" means.
Writing a privacy notice, responding to a subject access request, and when to delete, change, move or stop processing people's information.
Fairness, transparency, purpose limitation, minimisation, accuracy, accountability, storage and security.
Consent, contracts, legitimate interests, vital interests, public task, legal obligation, special category data and criminal offence data.
CCTV, video surveillance, body worn cameras and drones.
Definitions of 'controllers' and 'processors', how to determine them and their responsibilities.
DPIAs, accountability principle, internal governance, contracts, documentation, and data protection officers.
International data transfers, transfer agreements, transfer risk assessments and binding corporate rules.
When and how you can apply exemptions to the UK GDPR requirements.
The security principles, personal data breaches, and guidance on encryption, ransomware and passwords.
The data sharing code, case studies and examples, checklist, the sharing of personal information with and by law enforcement authorities, sharing information to prevent harm and for child safeguarding purposes.
Advice for employers and organisations involved in employment issues on how to use and look after your workers’ personal information, and guidance about working from home.
How to protect children's information, the Age Appropriate Design Code and resources for online service providers.
Artificial intelligence and data protection, AI risk assessment, explaining decisions made with AI and data analytics.
Privacy in the product lifecycle and designing online services for children.
Research provisions in the UK GDPR and the DPA 2018, the principles and grounds for processing, research exemptions and safeguards.
The data protection and journalism code, reference notes, consultation responses and impact assessment.