The Data Protection Act 2018 applies the EU’s GDPR standards for the processing of data considered as general data, this is data which is processed for a reason not involving law enforcement or national security. How organisations should process general data can be found in Part 2 of the DPA 2018.
The processing of data for law enforcement purposes is covered in Part 3 of the DPA 2018 and can only be done by an organisation which is considered as a competent authority. Law enforcement purposes are defined as the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, including the safeguarding against and the prevention of threats to public security. The description of a competent authority is laid down in the Data Protection Act 2018, it includes but is not limited to, organisations such as Police Forces, the Financial Conduct Authority and the Information Commissioner.
The Chief Constable of Northamptonshire Police is the Data Controller and has overall responsibility for the lawful processing of all personal data by their force.
The Data Protection Officer for Northamptonshire Police is Trina Kightley-Jones.
They can both be contacted at the details below.
Northamptonshire Police Information Unit Force Headquarters Wootton Hall, Wootton Hall Park Northampton NN4 0JQ