EU Regulation 2016/679, generally known as the General Data Protection Regulation (GDPR), can be found at The Data Protection Act 2018 is the UK’s implementation of GDPR.

The Act controls how personal information is used by organisations, businesses or the Government and it is designed to make sure that people’s personal information is protected — no matter where it is sent, processed or stored, even outside the EU.

According to the UK’s independent authority set up to uphold information rights, the Information Commissioner's Office (ICO), the Government has confirmed that the UK’s decision to leave the EU will not affect the coming into force of GDPR. The European Commission is certain to require continued compliance post-Brexit as part of any trading UK-EU agreement. This is particularly the case as the regulation already applies to non-EU countries so the UK will have to agree to maintain compliance if UK companies are to continue to trade data with organisations in the EU27.


Want to read more?

This content requires a Croner-i subscription.

No Subscription?


Contact us to discuss your requirements.

Book a demo
Call an Expert:

0800 231 5199

Talk to us on

live chat