2Protection of personal dataU.K.
(1)The [F1UK GDPR] and this Act protect individuals with regard to the processing of personal data, in particular by—
(a)requiring personal data to be processed lawfully and fairly, on the basis of the data subject's consent or another specified basis,
(b)conferring rights on the data subject to obtain information about the processing of personal data and to require inaccurate personal data to be rectified, and
(c)conferring functions on the Commissioner, giving the holder of that office responsibility for monitoring and enforcing their provisions.
(2)When carrying out functions under the [F2UK GDPR] and this Act, the Commissioner must have regard to the importance of securing an appropriate level of protection for personal data, taking account of the interests of data subjects, controllers and others and matters of general public interest.
Textual Amendments
F1Words in s. 2(1) substituted (31.12.2020) by The Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019 (S.I. 2019/419), reg. 1(2), Sch. 2 para. 3 (with reg. 5); 2020 c. 1, Sch. 5 para. 1(1)
F2Words in s. 2(2) substituted (31.12.2020) by The Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019 (S.I. 2019/419), reg. 1(2), Sch. 2 para. 3 (with reg. 5); 2020 c. 1, Sch. 5 para. 1(1)