Offences under the Data Protection Act 2018

Copyright © 2025 LexisNexis
Produced in partnership with Sam Thomas of 2BR
Practice notes

Offences under the Data Protection Act 2018

Copyright © 2025 LexisNexis

Produced in partnership with Sam Thomas of 2BR

Practice notes
imgtext

This Practice Note explains the criminal offences contained within the Data Protection Act 2018 (DPA 2018). These provisions came into force on 25 May 2018.

For information about the purpose and scope of DPA 2018, see Practice Note: The Data Protection Act 2018.

DPA 2018 repealed the Data Protection Act 1998 (DPA 1998) as of 25 May 2018. Data protection offences which occurred prior to 25 May 2018, may still be prosecuted under DPA 1998 after that legislation has been repealed. For information on data protection and data handling offences under DPA 1998, see Practice Notes: Unlawfully obtaining data under the Data Protection Act 1998 [Archived] and Notification offences under the Data Protection Act 1998 [Archived].

The DPA 2018 was amended, by the Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations, SI 2019/419, to amend reference to ‘GDPR’ to ‘UK GDPR’ which came into effect on 31 December 2020.

DPA 2018 creates a number of principal and ancillary criminal offences in relation to personal data:

  1. unlawful obtaining etc of data

Sam Thomas
Sam Thomas

Barrister, 2BR

·       Sam is the Vice Chair of the Association of Disciplinary and Regulatory Lawyers (ARDL), and is the Chair of the Sports Law Practise Group. He represents professionals and regulators, primarily in the healthcare sector, in respect of disciplinary proceedings and NHS Performer and Contractor disputes, with appellant experience in the Administrative Court.
 
·       Sam’s experience in financial regulation is growing. He regularly represents The Pension Regulator (TPR) in proceedings in the First Tier Tribunal and has recently appeared in the Upper Tribunal in relation significant matters of law. Sam has provided advice to the Financial Conduct Authority (FCA).
 
·       The Police Federation have instructed Sam to defend police officers accused of police misconduct, and criminal contempt. 
 
·       He regularly appears before the General Dental Council (GDC), General Optical Council (GOC), UK Council for Psychotherapy (UKCP) and the Nursing and Midwifery Council (NMC), and has advised with regard to the gamut of allegations relevant to fitness to practise. Sam has also served as the Interim Head of Professional Discipline for the Association of Optometrists (which insures 89 percent of the optometrists in the UK.)
 
·       When representing Registrants, Sam has successfully defended allegations of misconduct including: negligent clinical performance; poor record keeping; inappropriate sexual conduct; and acts of dishonesty. Sam is adept at utilising expert evidence within his written and oral advocacy.

Read moreRead more
Powered by Lexis+®
Jurisdiction(s):
United Kingdom
Related legal acts:
Key definition:
Data definition
What does Data mean?

This term is not defined in the cpr. In normal usage it means information that has been organised and categorised for a pre-determined purpose.

Read more readmore

Popular documents

Priority between loss reliefs in loss making companies

Priority between loss reliefs in loss making companiesWhy does it matter?A company that is a member of a group and has incurred any of the types of losses available for surrender by way of group relief may, without any further rules, have more than one way in which to use the loss. There are a

Late payment penalties—inheritance tax

Late payment penalties—inheritance taxWhile interest often accrues on overdue tax, the late payment of certain taxes may also attract a penalty. For information on the interest accruing on overdue tax, see Practice Notes: IHT—payment deadlines on death—Interest on IHT and Interest on late paid

If a beneficiary signs a deed of disclaimer of their share of an estate and the estate pays their legal

If a beneficiary signs a deed of disclaimer of their share of an estate and the estate pays their legal fees, will that count as a PET against their estate?A disclaimer is the refusal of a gift prior to acceptance. The refusal of the gift must take place before the beneficiary accepts any benefit

Template for regulatory references given by SMCR firms and disclosure requirements

Template for regulatory references given by SMCR firms and disclosure requirements[Insert addressee details]Dear [insert name][It is our understanding that [insert name of prospective employee] [was an employee of yours between the dates of [insert dates as appropriate] OR is a current employee of