CHAPTER 6: SECURITY OBLIGATIONS AND DATA PROCESSORS
Principle 7 is an important provision of the DPA. It states that data controllers must take appropriate technical and organisational measures against unauthorised or unlawful processing of personal data and against accidental loss or destruction of or damage to personal data. The DPA explains what should be weighed in deciding whether security measures are appropriate. The data controller has to consider the harm that might result from the unauthorised or unlawful processing or accidental loss or destruction or damage to data and the nature of the data to be protected, and must ensure an appropriate level of security taking into account the state of technology and the cost of implementing security ...
Get Data Protection Compliance in the UK, Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
