Answers
Permission given by individuals for companies to collect their personal data; must be freely given, specific, informed, and revocable
A principle that the data controller is responsible for, and must be able to demonstrate, compliance with the other data protection principles
A principle of the Data Protection Act requiring data processing to be lawful, fair, and transparent to the individual
A principle requiring personal data to be accurate and kept up to date
A principle ensuring that personal data is processed in a manner that ensures its security, including protection against unauthorised or unlawful processing
Information that relates to an identified or identifiable individual, such as name, address, phone number, and medical history
A principle that ensures the collection of data is adequate, relevant, and limited to what is necessary for the purposes for which it is processed
A principle that personal data should be kept in a form that permits identification of data subjects for no longer than necessary
A principle that data should be collected for specific, explicit, and legitimate purposes and not further processed in a manner incompatible with those purposes
