The collection and use of personal data by e-businesses in the UK must comply with data protection laws.

These laws are primarily contained in the Data Protection Act 1998 and the Privacy and Electronic Communications Regulations 2003.

A website owner is likely to collect a variety of personal data from visitors to its website and customers purchasing products or services.

Failure to comply with data protection laws can result in criminal sanctions and in some cases, directors or company officers may found to be personally liable.

In many cases, the processing of personal data will require the consent of the data subject. Where ‘sensitive personal data’ is processed, the consent obtained has to be ‘explicit’.

Ensure that your company is registered on the Register of Data Controllers, which is maintained by the Office of Information Commissioner. It is now deemed a criminal offence for you to process personal data without a register entry, which is renewable annually at a cost of £35 per year. The register is publicly available at http://www.ico.gov.uk.

You can register online at the same website.

0% of 0 voters found this FAQ useful,  I found this FAQ   useful   not useful