Data Protection Act 1998
E552855
The Data Protection Act 1998 was a UK law that governed how personal data was collected, stored, and used, implementing EU data protection standards before being largely replaced by later legislation such as the GDPR and Data Protection Act 2018.
All labels observed (1)
| Label | Occurrences |
|---|---|
| Data Protection Act 1998 canonical | 4 |
How this entity was disambiguated
This entity first appeared as the object of triple T5892802 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: Data Protection Act 1998 Context triple: [Freedom of Information Act 2000, relatedTo, Data Protection Act 1998]
-
A.
Data Protection Act 2018
The Data Protection Act 2018 is the UK’s primary data protection law that implements and supplements the EU GDPR framework, setting rules for how personal data must be collected, used, and safeguarded.
-
B.
Data Protection Directive 95/46/EC
The Data Protection Directive 95/46/EC was a foundational European Union law that established early comprehensive rules for the protection of personal data and privacy across EU member states before being superseded by the GDPR.
-
C.
Human Rights Act 1998
The Human Rights Act 1998 is a landmark UK statute that incorporates the rights set out in the European Convention on Human Rights into domestic law, enabling individuals to enforce those rights in UK courts.
-
D.
Privacy Act of 1974
The Privacy Act of 1974 is a U.S. federal law that governs how federal agencies collect, maintain, use, and disclose individuals’ personal information, granting citizens rights to access and correct records about themselves.
-
E.
Regulation of Investigatory Powers Act 2000
The Regulation of Investigatory Powers Act 2000 is a UK law that governs the use of surveillance, interception of communications, and investigatory powers by public authorities and intelligence agencies.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: Data Protection Act 1998 Target entity description: The Data Protection Act 1998 was a UK law that governed how personal data was collected, stored, and used, implementing EU data protection standards before being largely replaced by later legislation such as the GDPR and Data Protection Act 2018.
-
A.
Data Protection Act 2018
The Data Protection Act 2018 is the UK’s primary data protection law that implements and supplements the EU GDPR framework, setting rules for how personal data must be collected, used, and safeguarded.
-
B.
Data Protection Directive 95/46/EC
The Data Protection Directive 95/46/EC was a foundational European Union law that established early comprehensive rules for the protection of personal data and privacy across EU member states before being superseded by the GDPR.
-
C.
Human Rights Act 1998
The Human Rights Act 1998 is a landmark UK statute that incorporates the rights set out in the European Convention on Human Rights into domestic law, enabling individuals to enforce those rights in UK courts.
-
D.
Privacy Act of 1974
The Privacy Act of 1974 is a U.S. federal law that governs how federal agencies collect, maintain, use, and disclose individuals’ personal information, granting citizens rights to access and correct records about themselves.
-
E.
Regulation of Investigatory Powers Act 2000
The Regulation of Investigatory Powers Act 2000 is a UK law that governs the use of surveillance, interception of communications, and investigatory powers by public authorities and intelligence agencies.
- F. None of above. chosen
Statements (51)
| Predicate | Object |
|---|---|
| instanceOf |
Act of Parliament of the United Kingdom
ⓘ
data protection law ⓘ |
| abbreviation | DPA 1998 NERFINISHED ⓘ |
| allows |
enforcement notices
ⓘ
information notices ⓘ |
| appliesTo |
automated personal data
ⓘ
certain manual filing systems ⓘ data controllers ⓘ processing of personal data ⓘ |
| commencement | 1 March 2000 ⓘ |
| country | United Kingdom ⓘ |
| creates | criminal offences for certain data protection breaches ⓘ |
| defines |
data controller
ⓘ
data subject ⓘ processing ⓘ sensitive personal data ⓘ |
| enforcedBy | Information Commissioner NERFINISHED ⓘ |
| establishes | data protection principles ⓘ |
| implements | EU Data Protection Directive 95/46/EC NERFINISHED ⓘ |
| introducedBy | UK Government NERFINISHED ⓘ |
| jurisdiction | United Kingdom ⓘ |
| legalSystem |
English law
ⓘ
Northern Ireland law ⓘ Scots law NERFINISHED ⓘ |
| legislature | Parliament of the United Kingdom NERFINISHED ⓘ |
| numberOfPrinciples | 8 ⓘ |
| provides |
right to compensation for breaches
ⓘ
right to prevent direct marketing ⓘ right to prevent processing causing damage or distress ⓘ rights in relation to automated decision-making ⓘ rights of access to personal data ⓘ |
| regulator | Information Commissioner’s Office NERFINISHED ⓘ |
| repealedBy | Data Protection Act 2018 NERFINISHED ⓘ |
| replaced | Data Protection Act 1984 NERFINISHED ⓘ |
| requires |
accurate personal data
ⓘ
appropriate technical and organisational security measures ⓘ data not kept longer than necessary ⓘ data processed in accordance with data subjects’ rights ⓘ fair processing of personal data ⓘ lawful processing of personal data ⓘ restrictions on transfer of personal data outside the EEA ⓘ |
| royalAssent | 1998 ⓘ |
| shortTitle | Data Protection Act 1998 NERFINISHED ⓘ |
| status | partially repealed ⓘ |
| subjectMatter |
data protection
ⓘ
personal data ⓘ privacy ⓘ |
| supersededBy |
Data Protection Act 2018
NERFINISHED
ⓘ
UK General Data Protection Regulation NERFINISHED ⓘ |
| temporalScope | late 1990s to 2018 ⓘ |
| yearEnacted | 1998 ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: Data Protection Act 1998 Description of subject: The Data Protection Act 1998 was a UK law that governed how personal data was collected, stored, and used, implementing EU data protection standards before being largely replaced by later legislation such as the GDPR and Data Protection Act 2018.
Referenced by (4)
Full triples — surface form annotated when it differs from this entity's canonical label.