Borough Councillors are Data Controllers for the purposes of processing personal information in their dealings with constituents or others. This means that they are required to comply with the data protection principles set out in the Data Protection Act 2018 and Article 5 of the UK GDPR (the retained EU law version of the General Data Protection Regulation). This Data Protection Commitment sets out how Councillors will comply with the data protection principles.