Data protection offences

The Data Protection Act 2018 (DPA 2018) came into force on 25 May 2018. As originally enacted, DPA 2018 implemented the provisions and permitted derogations into UK law contained within General Data Protection Regulation (EU) 2016/679 (EU GDPR), as well as provisions of the Law Enforcement Directive (EU) 2016/680 (EU LED), which applied data protection standards generally to personal data and provided a distinct data protection framework for intelligence purposes. Post Brexit, the UK General Data Protection Assimilated Regulation (EU) 2016/679 (UK GDPR) provides the framework in domestic law for the regulation of data protection. EU GDPR regime remains applicable under the laws of states in the EU and wider EEA. UK GDPR regime generally preserves the core EU GDPR standards in UK domestic law such as the data protection principles, rights of data subjects and obligations for controllers and processors. However, there are some differences resulting from changes made by Brexit legislation.

For detailed information on the requirements of DPA 2018, UK GDPR and EU GDPR, see:

  1. Data protection regime—overview

  2. The Data Protection Act 2018

  3. Processing personal data by law enforcement and

To view the latest version of this document and thousands of others like it, sign-in with LexisNexis or register for a free trial.

Powered by Lexis+®
Latest Corporate Crime News
View Corporate Crime by content type :

Popular documents