The UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals.

These self-assessment checklists have been created with small business owners and sole traders in mind. If you’re a small group or organisation, such as a sports club, these checklists will be useful for you too.

We’re here to help you improve your understanding of data protection and to help you decide what steps you need to take to make sure you’re using people’s personal data correctly and keeping it securely.

Every checklist you complete will provide you with a short report suggesting some practical actions to improve your data protection knowledge and compliance.

Let’s get started.


How well do you comply with data protection law? An assessment for small business owners and sole traders

This checklist is for you if you work for yourself or if you have a small team and want to find out how well you comply. It would also be useful for those new to data protection looking to start with the basics.


Data protection self-assessment for small organisations

This checklist would be most helpful for small- to medium-sized organisations from the private, public and third sectors.


How well could you respond to a personal data breach?

This checklist will help you to check your ability to respond to a personal data breach. Please note this checklist is in a first phase and we’ll be making improvements.


Does data protection law apply to my business?

Most small organisations will be processing personal data of some description. Take our short quiz to help you decide if data protection law applies to you.

How well do you understand your data protection responsibilities?

This checklist is to help sole traders and other small UK organisations. Use it to make sure you and your business comply with your data protection obligations.