Personal data held by Members
Members of Parliament and Members of the House of Lords who handle personal data are each separate controllers under data protection law. A controller is a person or organisation who is the main decision-maker in relation to the personal data they are handling and are therefore responsible for compliance with data protection law.
For this reason, the House Administrations are not responsible for the processing of personal data undertaken by Members (such as the processing of personal data of constituents, staff, etc). Any queries about their use of personal data should be directed to the relevant Member themselves.
House of Lords Members standard privacy notice
Where they are controllers of personal data, Members of the House of Lords are obliged to provide individuals whose personal data they process with privacy information.
If you have corresponded with a Member of the House of Lords and they have directed you to this webpage, they consider that the standard House of Lords Members privacy notice (pdf, 126KB) correctly describes the way that they process personal data as part of their parliamentary work. Please note that it does not cover any processing they carry out in any other capacity.
Any queries about the processing of personal data they carry out should be directed to the relevant Member.
Data protection advice for Members of both Houses
The Information Compliance teams of each House are able to provide advice to Members on their data protection obligations.
You can find this on ParliNet in the ‘Information and resources’ section or by searching ‘data protection’.
Alternatively, you can contact the relevant Information Compliance team: