Register of data controllers
The Register of data controllers is a United Kingdom database under the control of the UK Information Commissioner's Office mandated by the UK Data Protection Act 1998[1] (The Act) which records the name of the data controller[2] and the purpose(s) for the processing of the data processed by that controller within the meaning of The Act.[3][4][5]
Under The Act a data controller may, under some circumstances, be exempt from registration (previously termed notification).[6] When not exempt,[7] failure to notify the Information Commissioner's Office formally before the start of processing data is a strict liability offence for which a prosecution may be brought by the Information Commissioner's Office in the criminal court of the UK.[8] Failure to notify is a criminal offence unless exempt. Exemption from registration does not exempt a data controller from compliance with The Act.
Amendments to a data controller's notification may be made at any time, and must be made before the start of a new processing purpose.
Registration carries a fee, the proceeds of which fund the UK Information Commissioner's Office directly.
Any entry may be inspected at any time at no cost to the enquirer.[3]
References
- ↑ Lua error in package.lua at line 80: module 'strict' not found.
- ↑ Lua error in package.lua at line 80: module 'strict' not found.
- ↑ 3.0 3.1 Lua error in package.lua at line 80: module 'strict' not found.
- ↑ Lua error in package.lua at line 80: module 'strict' not found.
- ↑ Lua error in package.lua at line 80: module 'strict' not found.
- ↑ Lua error in package.lua at line 80: module 'strict' not found.
- ↑ Lua error in package.lua at line 80: module 'strict' not found.
- ↑ Lua error in package.lua at line 80: module 'strict' not found.
External links
- The Register of data controllers, at which any entry may be inspected at no charge.
