The Data Protection Act 1998 requires every organisation that processes personal information to register with the Information Commissioner’s Office (ICO), unless they are exempt. Failure to do so is a criminal offence.

There are more than half a million registered data controllers. We publish the name and address of these data controllers, as well as a description of the kind of processing they do.

While we work to prepare for the upcoming GDPR, the public register will remain as at 3 May 2018. It will next be updated on 25 May 2018.

Data controllers may have amended their register entry but these will not be reflected until 25 May 2018.

Search the register