News, views and top stories in your inbox. Don't miss our must-read newsletter Sign up Thank you for subscribing We have more newsletters Show me See our privacy notice Invalid Email

You may think clicking Private Browsing on your internet history will keep you protected from anyone snooping into it.

But unfortunately that's not the case thanks to the Investigatory Powers Bill, dubbed the Snooper’s Charter, which was passed in 2016.

The Bill, which received Royal Assent in November of that year, makes broad provisions to track what you do online.

It also outlines that internet providers must now keep a full list of internet connection records (ICRs) for a year and make them available to certain agencies if requested.

This means that out there, somewhere, is a list of every single website and instant messaging apps that you have visited or used in the past 12 months, reports Daily Post.

These agencies have full access to anything you've ever searched, should they require it - whether you want them to or not.

(Image: Getty Images Europe)

This is the full list of organisations and agencies that can ask for any UK citizens browsing history:

Metropolitan Police Service

City of London Police

Police forces maintained under section 2 of the Police Act 1996

Police Service of Scotland

Police Service of Northern Ireland

British Transport Police

Ministry of Defence Police

Royal Navy Police

Royal Military Police

Royal Air Force Police

Security Service

Secret Intelligence Service

GCHQ

Ministry of Defence

Department of Health

Home Office

Ministry of Justice

National Crime Agency

HM Revenue & Customs

Department for Transport

Department for Work and Pensions

NHS trusts and foundation trusts in England that provide ambulance services

Common Services Agency for the Scottish Health Service

Competition and Markets Authority

Criminal Cases Review Commission

Department for Communities in Northern Ireland

Department for the Economy in Northern Ireland

Department of Justice in Northern Ireland

Financial Conduct Authority

Fire and rescue authorities under the Fire and Rescue Services Act 2004

Food Standards Agency

Food Standards Scotland

Gambling Commission

Gangmasters and Labour Abuse Authority

Health and Safety Executive

Independent Police Complaints Commissioner

Information Commissioner

NHS Business Services Authority

Northern Ireland Ambulance Service Health and Social Care Trust

Northern Ireland Fire and Rescue Service Board

Northern Ireland Health and Social Care Regional Business Services Organisation

Office of Communications

Office of the Police Ombudsman for Northern Ireland

Police Investigations and Review Commissioner

Scottish Ambulance Service Board

Scottish Criminal Cases Review Commission

Serious Fraud Office

Welsh Ambulance Services National Health Service Trust

(Image: Getty Images Europe)

However you needn't panic if someone you know works for one of these organisations as the law stipulates the lowest rank each person must be to be able to gain access to the records.

So for instance, in the police, anyone requesting access must be at least an inspector or a superintendent.

The bill seems to be contradictory to government plans to strengthen UK data protection law, giving citizens more control over their personal information - including what they share on social media.

Under the new Data Protection Bill , individuals will have the "right to be forgotten", meaning they will be able to make websites like Facebook delete information - including content published in their childhood.

(Image: Universal Images Group Editorial)

Matt Hancock, Minister of State for Digital, said the measures are designed to "give consumers the confidence that their data is protected and those who misuse it will be held to account".

Prime Minister Theresa May has vowed to overturn peers’ changes to the bill, which is currently being reviewed by a Public Bill Committee in the House of Commons.

If passed, the Data Protection Bill will bring British law into line with the EU's General Data Protection Regulation (GDPR), which will become enforceable from May 25, 2018.

Here's what the new Data Protection Bill and "right to be forgotten" could mean for you:

It will be easier to withdraw your consent for the use of your personal data

(Image: Getty)

If you ticked a box that gave a company permission to use your personal information for marketing or targeted advertising, and have come to regret it, the new bill will allow you to withdraw your consent at any time.

This should encourage companies to treat your information with respect, and not bombard you with unsolicited communications.

You will be able to ask for your personal data held by companies to be erased

If you uploaded embarrassing photos to Facebook as a teenager, and now want them wiped from your record, the new bill will give you the power to do so.

You will also be able to force companies to delete your contact details and personal information from their databases.

(Image: Getty)

"It is important that the general public embraces this new freedom and recognises the value of personal data," said David Emm, principal security researcher, Kaspersky Lab.

"It is important that we on an individual level know what information is being kept and how it’s being handled – which will also reduce the likelihood of it falling into the wrong hands."

Parents and guardians will be able to give consent for their child's data to be used

Children are accessing the internet from an early age these days, so it's important their personal data is being protected.

The new bill will give parents and guardians direct control over where their child's data is used.

(Image: Getty)

Companies will have to gain your 'explicit' consent before processing your sensitive personal data

If companies want to collect your personal data, they will have to gain your explicit consent - meaning you will have to proactively tick a box saying you agree.

That means default opt-in and pre-selected "tick boxes" will become a thing of the past.

It is not yet clear whether the same principle will be applied to the government's collection of citizens' personal data.

"It feels hypocritical for the government to be trumpeting these new data protection measures while at the same time being responsible for the Investigatory Powers Act, or Snoopers' Charter, that runs completely contrary to these proposals," said Simon Migliano, Head of Research at Top10VPN.com .

(Image: PA)

"Will the Government have to ask 'explicit' permission to harvest your data? Will you be able to ask them to view or delete the data the Government holds on you? I doubt it.

"Consumers should not rely on the Government to look after their digital rights and data. Instead they should take responsibility for minimising their digital footprint through a combination of cautious, careful habits and technology."

Your IP address, internet cookies and DNA will also be classified as 'personal data'

In the digital, age the definition of personal data is not always clear, and the ways we share information online are constantly evolving.

The new bill will expand the definition to cover the digital footprints you leave online without even realising - such as IP addresses and internet cookies.

It will also include DNA - which means the biometric information you use to access digital service, such as fingerprints, facial recognition and iris scanning.

(Image: Getty)

"The expansion of personal identifiable information to include IP addresses, DNA and cookies is going to be no easy task for businesses to identify and protect," said Bharat Mistry, principal security strategist at Trend Micro.

"What’s more, they’ll need to have both an effective consent policy in place, and know exactly where this data is held should a consumer exercise their right to be forgotten.

"And this doesn't just to apply to businesses themselves, but any third party partners that might be processing their customer data, meaning there are a lot of plates to spin."

It will be easier and free to see what personal data an organisation holds on you

If you use a lot of online services, it can be difficult to keep track of what information you have given to each company.

(Image: Getty)

The bill will allow you to request a full breakdown of the information any given company holds on you.

“This does provide some challenges for business in terms of getting their houses in order, but, ultimately, this now means that privacy needs to be at the core of their business strategies," said Mark Thompson, head of privacy advisory at KPMG.

It will be easier to move data between service providers

If you have lost trust in one online service provider and want to switch to another, the bill will make it easier to do so.

It will also make it easier to share information between two difference service providers, so you don't have to enter it all over again.

(Image: Digital Vision Vectors)

Companies will face increased penalties for breaking the rules

If a company loses your personal information, you can often feel powerless to do anything about it.

Under the terms of the bill, the Information Commissioner's Office will be given the power to issue higher fines of up to £17 million pounds or 4% of global turnover, in cases of very serious data breaches.

The measures should encourage companies to take data protection seriously, and help give users of online services peace of mind.

"All too often consumers suffer the consequences when company failures lead to their data being compromised, so the government must ensure they can easily get redress when data is lost," said Alex Neill, managing director of home products and services at Which?.