The Data Protection Act 1998 requires every organisation that processes personal information to register with the Information Commissioner’s Office (ICO), unless they are exempt. Failure to do so is a criminal offence.
There are more than half a million registered data controllers. We publish the name and address of these data controllers, as well as a description of the kind of processing they do.
While we work to prepare for the upcoming GDPR, the public register will remain as at 3 May 2018. It will next be updated on 25 May 2018.
Data controllers may have amended their register entry but these will not be reflected until 25 May 2018.