Getting privacy notices right for data protection

New guidance on privacy notices, where organisations explain how they use personal data in accordance with data protection regulations, has been issued by the Information Commissioner’s Office.

ICO head of policy has written a blog on why it’s important to get privacy notices right, along with their “two-step approach”: ‘Transparency, innovation and building a culture of data confidence and trust‘. Or read Out-law’s news article ‘ICO backs ‘just-in-time’ consent and greater control for consumers in new privacy notices code‘.

The code itself has practical advice and examples of what to include,  plus an action checklist. Solicitors Bates Wells Braithwaite point out that this is the first guidance published by the ICO that has been written to explain how to comply with both the existing Data Protection Act and the EU’s General Data Protection Regulation (GDPR).

The code can be read online, or download a 35 page pdf (637KB) from the front page for ‘Privacy notices, transparency and control
Data protection: A code of practice on communicating privacy information to individuals‘.