All legal references
Legal

GDPR / UK Data Protection Act 2018

Handling personal data — including CCTV, body-worn video, incident reports.

Principles

  • Lawful, fair, transparent.
  • Purpose limitation — collect for specific reason.
  • Data minimisation.
  • Accuracy.
  • Storage limitation — retain no longer than necessary.
  • Integrity and confidentiality.
  • Accountability.

For security

  • CCTV / BWV must be signposted.
  • Retention typically 30 days unless evidential.
  • Subject Access Requests must be met within 1 month.
  • Report data breaches to ICO within 72 hours.
  • Only share with police for legitimate purpose — Section 29 DPA exemption.

GuardAssist provides operational decision support. It does not replace formal training, employer procedures, assignment instructions or professional judgement. In a life-threatening emergency, dial 999.