The ICO has comprehensive information (http://www.ico.gov.uk/for_organisations.aspx) and the BSI Data Protection Guide provides comprehensive guidance.
Related Q&A from Alan Calder
Expert Alan Calder responds to a reader’s question: Must companies outside the EU change their websites to comply with EU cookie regulations? Continue Reading
Alan Calder discusses PCI credit card compliance and explains the importance of encryption to credit card data protection when primary account ... Continue Reading
Expert Alan Calder explains the security and compliance challenges for call centres that record telephone conversations and credit card details. Continue Reading