The Data Protection Act was introduced in 1984 and updated in 1998 to protect personal privacy with increasing computer technology. It requires those processing personal data to comply with eight principles, including ensuring data is fairly and lawfully processed, accurate, not excessive, not kept longer than needed, and subject to individual rights. It established the Information Commissioner's Office to oversee the Act.