Data Subject: Anyone who has data stored about them.
Data Controller: Organisation storing data on data subjects. (e.g. Facebook)
Information Commissioner (ICO): Head of the data protection agency who ensures data controllers use data properly.
Principles:
- Data should be processed fairly and lawfully
- Data should only be used for the purpose specified in the data protection act
- Data should be relevant and not excessive
- Data should be accurate and up to date
- Data should only be kept as long as necessary
- Individuals have the right to see data stored about them
- Security must be in place to stop unauthorised access of data
- Data may not be transferred out of the EU unless the country has adequate data protection legislation
Matty's Computer Science Blog 