Home/Regulations/UK GDPR
All Regulations
🇬🇧

UK GDPR

Birleşik Krallık Genel Veri Koruma Tüzüğü

United Kingdom
Effective: January 1, 2021
Active

The UK's post-Brexit data protection framework. It is the EU GDPR as incorporated into UK law and works alongside the Data Protection Act 2018.

Scope

  • Applies to organizations processing personal data in the UK
  • Applies to EU organizations offering goods/services to UK residents
  • Has extraterritorial scope

Data Subject Rights

  • Right to be informed
  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restrict processing
  • Right to data portability
  • Right to object

Key Obligations

  • Appointment of DPO (when required)
  • Maintaining processing records
  • Data breach notification (72 hours)
  • International transfer safeguards

Penalties

UK GDPR has a similar penalty structure to GDPR.

Maximum Fine
Up to £17.5 million or 4% of annual global turnover.

Cross-Border Transfers

Data flows between UK-EU continue under EU adequacy decision. UK SCCs are used for transfers to third countries.

Supervisory Authority

Information Commissioner's Office (ICO)

Visit website →

Related Regulations

🇪🇺GDPR🇹🇷KVKK

Need UK GDPR Compliance?

JUS. helps you comply with UK GDPR requirements efficiently.

Book a Demo

Compare Regulations

See how UK GDPR compares to other privacy laws.

Explore in Compliance Hub

View detailed data protection information for United Kingdom.

Go to United Kingdom

Simplify UK GDPR Compliance

Automate compliance workflows, manage data subject requests, and demonstrate compliance with JUS.

Book a DemoView Solutions
Request Demo