The 1998 Data Protection Act provides a framework for the way in which organizations should collect and process personal information. It has far-reaching implications for library and information managers who hold personal data on computer or on paper, or who may be called on to advise their colleagues. This practical guide explains the legal requirements and illustrates the issues with dozens of relevant and informative case studies.