Data protection offences

Copyright © 2025 LexisNexis

Data Protection Act 2018 (DPA 2018) came into force on 25 May 2018. As originally enacted, DPA 2018 implemented the provisions and permitted derogations into UK law contained within General Data Protection Regulation (EU) 2016/679 (EU GDPR), as well as provisions of the Law Enforcement Directive (EU) 2016/680 (EU LED), which applied data protection standards generally to personal data and provided a distinct data protection framework for law enforcement and intelligence purposes. Post Brexit, the UK General Data Protection Assimilated Regulation (EU) 2016/679 (UK GDPR) provides the framework in domestic law for the regulation of data protection. EU GDPR regime remains applicable under the laws of states in the EU and wider EEA. UK GDPR regime generally preserves the core EU GDPR standards in UK domestic law such as the data protection principles, rights of data subjects and obligations for controllers and processors. However, there are some differences resulting from changes made by Brexit legislation. More recently, Data (Use and Access) Act 2025 (DUAA 2025), which is partially in force, makes further changes to DPA 2018 and UK GDPR.

For detailed

To view the latest version of this document and thousands of others like it, sign-in with LexisNexis or register for a free trial.

Existing user? Sign-in TAKE A FREE TRIAL
Powered by Lexis+®
Latest Corporate Crime News

Met Police secures guilty pleas in £5.5bn cryptocurrency seizure case

The Metropolitan Police has secured guilty pleas from two defendants in connection with what it describes as the world's largest cryptocurrency seizure, valued at over £5.5bn. Zhimin Qian, 47, pleaded guilty at Southwark Crown Court on 29 September 2025 to acquiring and possessing criminal property, namely cryptocurrency, under the Proceeds of Crime Act 2002. Hok Seng Ling, 46, pleaded guilty on 30 September 2025 to transferring criminal property, namely cryptocurrency, under the same Act. The convictions follow a seven-year investigation by the Met's Economic Crime team into international money laundering connected to a fraud scheme that defrauded over 128,000 victims in China between 2014-2017. The Met seized 61,000 Bitcoin from Qian, a Chinese national who fled China using false documents and attempted to launder proceeds through UK property purchases. Additional seized assets including encrypted devices, cash, gold and further cryptocurrency were valued at £11m as of July 2025. Sentencing for both defendants is scheduled at Southwark Crown Court on 10-11 November 2025.

Corporate Crime weekly highlights—2 October 2025

This week's edition of Corporate Crime weekly highlights includes analysis of a bank deploying AI tools to detect fraud in light of the newly introduced ‘failure to prevent fraud’ offence, of what the Data (Use and Access) Act 2025 means for the UK’s data protection regime and of what this year’s US FCPA cases reveal about future enforcement trends. Also included is news of former UK politician pleading guilty to eight counts under the Bribery Act 2010, of a penalty issued by the OFSI to a company for breaching Russian sanctions regulations, of two consultations launched by the HSE, and of updated Home Office guidance on the use of disclosure orders under POCA 2002. All this, and more, in this week’s Corporate Crime highlights.

Health and safety prosecution round-up—2 October 2025

A round-up of the latest health and safety prosecutions, including a waste company fined after a worker suffered life-changing crush injuries.

MoJ updates NDA guidance following Victims and Prisoners Act 2024

The Ministry of Justice (MoJ) has updated its guidance on non-disclosure agreements (NDAs) following the implementation of section 17 of the Victims and Prisoners Act 2024 on 1 October 2025. The legislation establishes statutory protections for crime victims in England and Wales, confirming that NDAs cannot validly prevent victims from reporting crimes to police and extending protections to disclosures made to obtain confidential advice or support. Under the new 'Permitted Disclosures' framework, victims who sign NDAs on or after 1 October 2025 may disclose information about relevant criminal conduct to qualified lawyers, regulated professionals including healthcare workers, victim support services, regulators, and close family members for specified purposes. The changes apply only to NDAs signed from 1 October 2025 onwards, with earlier agreements remaining subject to previous rules. The MoJ has now published additional guidance for victims and individuals who use NDAs, explaining the practical implications of these statutory changes for confidentiality agreements across sectors including business, arts, charity, education, healthcare and technology.

View Corporate Crime by content type :
News
Practice notes
Precedents
Q&As

Popular documents

If a rentcharge is shown as being informally exonerated on title information, does this apply to the

If a rentcharge is shown as being informally exonerated on title information, does this apply to the current registered owner? Or does the informal exoneration only apply to the parties to the document which informally exonerated the rentcharge?This Q&A considers the situation where, at some

Late payment penalties—inheritance tax

Late payment penalties—inheritance taxWhile interest often accrues on overdue tax, the late payment of certain taxes may also attract a penalty. For information on the interest accruing on overdue tax, see Practice Notes: IHT—payment deadlines on death—Interest on IHT and Interest on late paid

Can shares in a limited company that have not been paid-up at all be cancelled?

Can shares in a limited company that have not been paid-up at all be cancelled?A limited company having a share capital may not alter that share capital, except in the ways listed in section 617 of the Companies Act 2006 (CA 2006). Shares in a company cannot simply be cancelled without following an

Glossary—Latin legal terms

Glossary—Latin legal termsDespite attempts in recent years to simplify the language used in legal cases, there are still a number of Latin phrases commonly used in personal injury claims. The following Latin phrases are listed in alphabetical order:Latin
If a rentcharge is shown as being informally exonerated on title information, does this apply to the

If a rentcharge is shown as being informally exonerated on title information, does this apply to the

If a rentcharge is shown as being informally exonerated on title information, does this apply to the current registered owner? Or does the informal exoneration only apply to the parties to the document which informally exonerated the rentcharge?This Q&A considers the situation where, at some

Late payment penalties—inheritance tax

Late payment penalties—inheritance tax

Late payment penalties—inheritance taxWhile interest often accrues on overdue tax, the late payment of certain taxes may also attract a penalty. For information on the interest accruing on overdue tax, see Practice Notes: IHT—payment deadlines on death—Interest on IHT and Interest on late paid

Can shares in a limited company that have not been paid-up at all be cancelled?

Can shares in a limited company that have not been paid-up at all be cancelled?

Can shares in a limited company that have not been paid-up at all be cancelled?A limited company having a share capital may not alter that share capital, except in the ways listed in section 617 of the Companies Act 2006 (CA 2006). Shares in a company cannot simply be cancelled without following an

Glossary—Latin legal terms

Glossary—Latin legal terms

Glossary—Latin legal termsDespite attempts in recent years to simplify the language used in legal cases, there are still a number of Latin phrases commonly used in personal injury claims. The following Latin phrases are listed in alphabetical order:Latin