Guidance on Data Protection

In making use of the LSE Archive researchers are responsible for the way in which they use the information obtained from the LSE Archive.

Set out below is a summary to assist researchers in understanding their obligations in undertaking research in relation to data protection law. Please note that this information is not intended as legal advice, or a substitute for it, but is guidance intended to provide practical support and to promote good practice.

Data Protection Act 1998: Researchers are responsible for the personal data they obtain and the subsequent use they make of it. The Data Protection Act 1998 ("the Act") governs how personal data should be handled and researchers must ensure that any data obtained relating to living individuals is treated in accordance with the eight principles contained in the Act.

As a general rule researchers may process personal and sensitive personal data in accordance with Section 33 of the Act.

There are a number of aspects a researcher should bear in mind when handling personal data in accordance with the Act:

1. The Act only applies to the personal data of living individuals.
2. Do not use personal data to support measures or decisions concerning an individual.
3. Do not use personal data to cause substantial damage or distress to individuals.
4. Whenever possible depersonalise or anonymise personal data.
5. Keep personal data secure.
6. Do not disclose personal data to anyone else without ensuring you may do so in accordance with the Act.

Further information and the full text of the Act are available on the Information Commissioner's website at http://www.informationcommissioner.gov.uk/

^