Image for article type insight
Insight

UK: Overview of the Data Protection and Digital Information Bill

August 8, 2022
Summary

The Data Protection and Digital Information Bill 143 aims to reform the UK's data protection framework post-Brexit by updating and simplifying laws, reducing organizational burdens while maintaining high standards. Key changes include amendments to definitions of personal data, international data transfers, legitimate interests, data subject rights, and the replacement of DPIAs with AHRPs. The Bill also introduces changes to digital verification services, automated decision-making, cookies, direct marketing, and the role of senior responsible individuals in data protection. Additionally, it proposes significant changes to the Information Commissioner's Office, aligning with the National Data Strategy to promote competition and innovation.

Introduction In the accompanying Explanatory Notes to Bill 1432, it is recalled that this legislative review is a direct result of the UK's departure from the EU. More than this, it is outlined that this proposed legislation is intended to 'update and simplify' UK data protection law, reducing burdens for organisations while maintaining high standards. Furthermore, it elaborates upon the Government's view that the current regime amounts to a 'box-ticking' exercise for organisations, thus discouraging a more proactive and systematic approach. Legislation subject to reform in Bill 143 includes not only the UK General Data Protection Regulation ('UK GDPR') and its complementary Data Protection

Insight

Gain access to unlimited articles with 7 day access to all features, no credit card required.

or

Other options: