These pages sit alongside our Guide to the GDPR and give more detailed, practical guidance for UK organisations on consent under the GDPR.

The GDPR sets a high standard for consent. Consent means offering people genuine choice and control over how you use their data. When consent is used properly, it helps you build trust and enhance your reputation.

This guidance will help you to decide when to rely on consent for processing and when to look at alternatives. It explains what counts as valid consent, and how to obtain and manage consent in a way that complies with the GDPR.

The guidance sets out how the ICO interprets the GDPR (as supplemented by the Data Protection Act 2018), and our general recommended approach to compliance and good practice.

For an introduction to the key themes and provisions of the GDPR, you should refer back to the guide. You can navigate back to the Guide at any time using the link at the top of this page. Links to other relevant guidance and sources of further information are also provided throughout.

When downloading this guidance, the corresponding content from the Guide to the GDPR will also be included so you will have all the relevant information on this topic.