answer text |
<p>The ICO Code of Practice on Anonymisation published in November 2012 was issued
under the Data Protection Act 1998. That legislation was repealed and replaced by
the GDPR and the Data Protection Act 2018 in May 2018. The 2012 report is therefore
no longer a valid code of practice, although information which is anonymous continues
to fall outside the scope of the UK’s data protection legislation.</p><p>The ICO is
currently carrying out <a href="https://ico.org.uk/about-the-ico/ico-and-stakeholder-consultations/ico-call-for-views-anonymisation-pseudonymisation-and-privacy-enhancing-technologies-guidance/"
target="_blank">a call for views</a> on its new, draft guidance on anonymisation,
pseudonymisation, and privacy-enhancing technologies, due to finish on 31 December
2022. This new guidance includes key considerations organisations should undertake
when determining whether information can be safely considered anonymous, and therefore
outside the scope of data protection legislation.</p>
|
|