The General Data Protection Regulation or GDPR is a European Regulation which harmonises data protection law across the EU. Since Brexit, the UK has adopted the “UK GDPR” which presently is almost identical in content. However, as time moves on, the two will move apart.
In the UK, the Data Protection Act 2018 sits with the UK GDPR and along with such regulations that govern electronic communications, they are the focus in terms of building a compliant business framework.
Using a number of recognised standards such as NIST, for example, we can design a compliance framework that enables you to display responsibility and provide assurance to customers, suppliers and regulators alike. Contact us at any time to discuss your requirements or to clarify what the law expects of your business.
The legislation is easily accessible online:
GDPR – https://gdpr-info.eu/
Data Protection Act 2018 – https://www.legislation.gov.uk/ukpga/2018/12/contents/enacted