Skip main navigation

What are the six legal bases?

In this video, experts from UCL Consultants and PA Consulting explore the six legal bases for processing data under GDPR.

A legal basis is a situation in which an organisation is legally permitted to process data.

In this video we explore the legal bases for processing data about a natural person. We will refer back to these when reflecting on Alex’s case study.

GDPR has six legal bases in total. It is important to note that the six legal bases must be honoured when personal data is processed.

As we proceed through this week, we will look at the rights that GDPR gives to individuals like Alex regarding the processing of their personal data. We will consider these rights against the legal bases for processing data, and explore their compatibility.

The six legal bases that Nathan and Ross outline in this video are:

  • Performance of a contract
  • Legal obligation
  • Performance of a task in the public interest
  • Consent
  • Legitimate interest
  • Protect the vital interests of an individual
  • Your task

    Take a few minutes to think of an hypothetical situation which would satisfy one of the above legal bases. Share it with your peers in the comments below.

    This article is from the free online

    Introduction to GDPR: General Data Protection Regulation

    Created by
    FutureLearn - Learning For Life

    Reach your personal and professional goals

    Unlock access to hundreds of expert online courses and degrees from top universities and educators to gain accredited qualifications and professional CV-building certificates.

    Join over 18 million learners to launch, switch or build upon your career, all at your own pace, across a wide range of topic areas.

    Start Learning now