Regulator Profile

ICO

Information Commissioner's Office

Enforcement Regulator

3

Areas of regulation

14

Laws enforced

UK-wide

Quick links

Visit official website Email ICO Call 0303 123 1113

Data Protection Freedom Of Information Privacy

What ICO does

Data protection, freedom of information, privacy and electronic communications regulation. Enforces UK GDPR and Data Protection Act 2018. Issues fines for breaches. All businesses processing personal data must pay ICO data protection fee.

Legal framework

Legislation that ICO enforces.

Primary legislation

• Freedom of Information Act 2000 Act 2000
• Data Protection Act 2018 Act 2018
• Data Use and Access Act 2025 Act 2025

Secondary legislation

• Electronic Commerce (EC Directive) Regulations 2002 UK Statutory Instrument 2002
• Privacy and Electronic Communications Regulations 2003 UK Statutory Instrument 2003
• Environmental Information Regulations 2004 UK Statutory Instrument 2004
• Freedom of Information (Fees and Appropriate Limit) Regulations 2004 UK Statutory Instrument 2004
• INSPIRE Regulations 2009 UK Statutory Instrument 2009
• Privacy and Electronic Communications (EC Directive) (Amendment) (No.2) Regulations 2011 UK Statutory Instrument 2011
• Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011 UK Statutory Instrument 2011
• Environmental Information (Public Bodies and Scottish Public Authorities) Regulations 2013 UK Statutory Instrument 2013
• Re-use of Public Sector Information Regulations 2015 UK Statutory Instrument 2015
• Data Protection (Charges and Information) Regulations 2018 UK Statutory Instrument 2018
• ... and 1 more statutory instruments