The rise in data breaches under the spotlight - Part 1. Implications on organisations
Clive Mackintosh
July 1, 2022
Does the GDPR still apply to the UK?
The EU GDPR is an EU regulation and it no longer applies to the UK. However...
Confusion has persisted around the UK and the GDPR since the UK left the European Union on January 31st 2020. In this blog, Clive Mackintosh, Founder of GDPR Rep, experts in GDPR Representative services answers the question - Does GDPR still apply to the UK?
The EU General Data Protection Regulation (GDPR) is an EU regulation and it no longer applies to the UK. However, the UK has implemented its own version of the GDPR, called the UK GDPR, which came into force on 1 January 2021.
The UK GDPR is largely the same as the EU GDPR, so in practice, there is little change to the data protection principles and obligations.
The UK GDPR applies to organisations that process personal data of individuals in the UK, regardless of where the organisation is located. It also applies to organisations that process personal data of individuals in the EEA, if they offer goods or services to individuals in the UK or monitor the behaviour of individuals in the UK.
There are some differences between the UK GDPR and the EU GDPR. For example, the UK GDPR allows for more targeted marketing and gives individuals more control over their personal data. The UK GDPR also has a different approach to international transfers of personal data.
Overall, the UK GDPR is a comprehensive and robust data protection law that is similar to the EU GDPR. It is designed to protect the privacy of individuals and give them control over their personal data.
Here are some additional things to keep in mind about the UK GDPR:
- The UK GDPR is enforced by the Information Commissioner's Office (ICO), which is the UK's independent authority set up to uphold information rights in the public interest, promote openness by public bodies and data privacy for individuals.
- Organisations that violate the UK GDPR can be fined up to £17.5 million or 4% of their global annual turnover, whichever is greater.
- The UK GDPR is constantly evolving, so it is important to stay up-to-date on the latest changes. The ICO publishes regular guidance on the UK GDPR, which can be found on its website - https://ico.org.uk
The UK GDPR is a significant piece of legislation that has had a major impact on the way organisations handle the personal data of UK citizens. It is important for organisations to understand the GDPR and to put in place measures to comply with it. If you are looking into how your organisation can fulfil its requirements why not schedule a no-commitment call with a GDPR representative expert today, or get a quote to understand how our value pricing makes compliance simple.
