“Knock knock… It’s the ICO!” - The UK regulator’s powers of entry and inspection

The GDPR grants regulators powers to obtain access to controllers' and processors' premises, equipment and data in accordance with Member State procedural Law. In the UK, these powers are set out in the Data Protection Act 2018. Failing to cooperate with, or to provide relevant information to, the ICO during such inspections can have serious consequences for both individuals and businesses. This briefing looks at the ICO's expanded powers to enter and inspect business premises and sets out actions organisations should consider in the event of an ICO inspection of their premises.

the-uk-regulators-powers-of-entry-and-inspection.pdf