Statutory guidance

Legal Aid Agency data security requirements

Guidance for legal aid providers on secure handling of personal documents and data.

From:
Legal Aid Agency
Published
1 June 2014
Last updated
25 March 2025 — See all updates

Applies to England and Wales

Documents

Provider Data Security Requirements v5 October 2025

PDF, 335 KB, 16 pages

This file may not be suitable for users of assistive technology.

Request an accessible format.
If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email web.comments@justice.gov.uk. Please tell us what format you need. It will help us if you say what assistive technology you use.

Provider Data Security Guidance v4.1 September 2024

PDF, 458 KB, 37 pages

This file may not be suitable for users of assistive technology.

Request an accessible format.
If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email web.comments@justice.gov.uk. Please tell us what format you need. It will help us if you say what assistive technology you use.

Provider Data Security Requirements v4.1 September 2024

PDF, 291 KB, 16 pages

This file may not be suitable for users of assistive technology.

Request an accessible format.
If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email web.comments@justice.gov.uk. Please tell us what format you need. It will help us if you say what assistive technology you use.

Provider Data Security Guidance v5 October 2025

PDF, 575 KB, 36 pages

This file may not be suitable for users of assistive technology.

Request an accessible format.
If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email web.comments@justice.gov.uk. Please tell us what format you need. It will help us if you say what assistive technology you use.

Data Security Requirements November 2020

PDF, 950 KB, 14 pages

Handling Personal Data And Documents Data Security Guidance November 2020

PDF, 772 KB, 39 pages

Handling removable media: guidance note for legal aid providers

PDF, 385 KB, 6 pages

Details

The purposes of the Legal Aid Agency (LAA) processes around handling personal data are set out in the ‘handling personal data and documents’ notification.

The ‘removable media guidance’ explain our shared legal responsibilities when sending removable media in support of applications and bills.

As a legal aid provider you must assure the LAA that you take every reasonable and appropriate measure to safely maintain the data you process.

Version 3 (November 2020) of the Data Security Requirements and Guidance apply to all contracts coming into force before 1 September 2024.

Version 4 (September 2024) of the Data Security Requirements and Guidance apply to all contracts coming into force on or after 1 September 2024 and before 1 October 2025.

Version 5 (October 2025) of the Data Security Requirements and Guidance apply to all contracts coming into force on or after 1 October 2025

Updates to this page

Published 1 June 2014
Last updated 25 March 2025 show all updates

  1. Two new data security documents added.

  2. Data Security Guidance updated for the EU Exit.

  3. New guidance sets out legal requirements when sending encrypted removable media in support of applications and bills

  4. A note added to the page stating the LAA Data Security Requirements Guidance will be updated shortly. The old data security requirements document was removed.

  5. Guidance updated.

  6. 'Handling personal data and documents data security guidance' and 'Handling personal data and documents data security requirements' added to page.

  7. First published.

Sign up for emails or print this page