Notification offences under the Data Protection Act 1998
Produced in partnership with Professor Dan Hyde of Harrison Clark Rickerbys
Notification offences under the Data Protection Act 1998

The following Corporate Crime practice note produced in partnership with Professor Dan Hyde of Harrison Clark Rickerbys provides comprehensive and up to date legal information covering:

  • Notification offences under the Data Protection Act 1998
  • Changes as a result of the General Data Protection Regulation
  • Digital Economy Act 2017
  • Notification required under the Data Protection Act 1998
  • Failure to notify the Information Commissioner
  • Requirement to provide registrable particulars
  • Exemptions from notification under the DPA 1998
  • Processing personal data without an entry on the register
  • Elements of the offence of processing without entry on the register
  • Failing to notify changes to the registrable particulars under the DPA 1998
  • More...

IP COMPLETION DAY: 11pm (GMT) on 31 December 2020 marks the end of the Brexit transition/implementation period entered into following the UK’s withdrawal from the EU. At this point in time (referred to in UK law as ‘IP completion day’), key transitional arrangements come to an end and significant changes begin to take effect across the UK’s legal regime. This document contains guidance on subjects impacted by these changes. Before continuing your research, see Practice Note: What does IP completion day mean for corporate crime?

This Practice Note is intended for use where a notification offence was committed before 25 May 2018. Where a notification offence occurred before 25 May 2018, it may still be prosecuted under Data Protection Act 2018 (DPA 1998) despite the fact that the legislation has been repealed. Notification offences under DPA 1998 cannot be committed after 25 May 2018. There are no equivalent notification offences under Data Protection Act 2018 (DPA 2018) so that a notification offence could only have been committed historically and prior to 25 May 2018 when DPA 1998 was in force.

Changes as a result of the General Data Protection Regulation

The General Data Protection Regulation (EU) 2016/679 (GDPR) became directly applicable and fully enforceable in all EU Member States from 25 May 2018. In the UK, the GDPR was implemented by DPA 2018, see Practice Note:

Related documents:

Popular documents