top of page
Nurture Team July LOW RES (79).jpg

what's on the blog?

Do you need to pay the data protection fee?

Protecting data that you collect is super important.


The general position is that if you are processing personal information as a data controller then you need to pay the data protection fee to the ICO.


The ICO - Information Commissioners Office - is the body that regulates data protection in the UK. If you don't register, you may be issued with a fine of up to £4,000.


Whether or not you have paid the fee could also have an impact on your reputation. Paying the fee and being listed on the ICO's register of fee payers shows that your company take data protection seriously.


There are three tiers of fee ranging from £40 and £2,900, but for most organisations it will be £40 or £60. If it avoids you paying a fine and protects your reputation, it is money well-spent.


The cost is reduced by £5 if you pay by direct debit. You can use our fee self-assessment to find out how much you will need to pay.

The tier your organisation falls into depends on:

  • how many members of staff you have;

  • your annual turnover;

  • if your organisation is a public authority;

  • if your organisation is charity; or

  • if your organisation is a small occupational pension scheme.

Tier 1 – micro organisations

You have a maximum turnover of £632,000 for your financial year or no more than 10 members of staff. The fee for tier 1 is £40.


Tier 2 – small and medium organisations

You have a maximum turnover of £36 million for your financial year or no more than 250 members of staff. The fee for tier 2 is £60.


Tier 3 – large organisations

If you do not meet the criteria for tier 1 or tier 2, you have to pay the tier 3 fee of £2,900.


Find out if you need to register here: https://lnkd.in/d_gyrNdF






bottom of page