The Information Commissioner’s Office is the regulator of data protection and other information rights legislation, we are sponsored by the Department for Science, Innovation and …

Search the ICO’s register of more than 1 million data controllers to find organisations and people registered with the ICO under the Data Protection Act.

Training videos View the information governance and legislation training modules we provide to ICO staff as part of their internal training.

Jun 19, 2025 · If a section makes changes that don’t directly affect you, we’ve noted this without explaining the detail (eg changes to the ICO’s responsibilities or the powers of the Secretary of …

Further reading – ICO guidance Read the section ‘ How do we ensure anonymisation is effective? ’ for further guidance on the factors you should consider when you assess identifiability.

You may receive an automatic reply, your original email request will remain unaltered and will be processed by ICO staff. We’ll also monitor any emails sent to us, including file attachments, for …

This means that being certified through an ICO approved certification scheme can assist you in showing how you are complying with, and implementing, data protection by design and by …

The ICO will give written advice within eight weeks, or 14 weeks in complex cases. If appropriate, we may issue a formal warning not to process the data, or ban the processing altogether.

It is for all organisations (we use this term to include all data controllers, including sole traders and companies) that need to pay a fee to the ICO. You'll need to complete the form in one session, …

Under the 1998 Act, the ICO published a number of more detailed guidance pieces on different aspects of IT security. Where appropriate, we will be updating each of these to reflect the UK …