A data processor is anyone (other than an employee of the data controller) that processes personal data on behalf of the data controller.
A data controller controls how and why personal data is processed. B&CE, provider of The People’s Pension, is a data controller in its own right. As joint data controllers, both B&CE and the employer have full responsibility for the compliance and accountability of the data collected and used.
For more information on definitions, see The Information Commissioner’s website »