All legal references
Legal
GDPR / UK Data Protection Act 2018
Handling personal data — including CCTV, body-worn video, incident reports.
Principles
- Lawful, fair, transparent.
- Purpose limitation — collect for specific reason.
- Data minimisation.
- Accuracy.
- Storage limitation — retain no longer than necessary.
- Integrity and confidentiality.
- Accountability.
For security
- CCTV / BWV must be signposted.
- Retention typically 30 days unless evidential.
- Subject Access Requests must be met within 1 month.
- Report data breaches to ICO within 72 hours.
- Only share with police for legitimate purpose — Section 29 DPA exemption.
GuardAssist provides operational decision support. It does not replace formal training, employer procedures, assignment instructions or professional judgement. In a life-threatening emergency, dial 999.