The Data Protection Act (DPA) 2018 is the UK’s data protection law. It brings the EU’s General Data Protection Regulation (GDPR) into the UK’s legal system and defines how personal data should be ...

The UK Financial Conduct Authority (FCA) and the Information Commissioner's Office (ICO) have published a joint statement clarifying ...

Vanta reports on 8 steps for making your website GDPR compliant, emphasizing transparency, consent, and data protection to ...

On 19 June 2025, the UK Parliament enacted the Data (Use and Access) Act 2025 (DUAA), marking the most significant UK data protection reform since the UK General Data Protection Regulation (UK GDPR).

Data protection rules do not prevent firms from collecting, recording and sharing customer vulnerability data where it is “appropriate”, a statement from the ...

In a significant move positioning the UK at the forefront of responsible AI adoption, the government has introduced what it calls a “world first” AI-focused cyber security code of practice. Released ...

This serves as an amendment to its General Data Protection Regulation and is aimed at streamlining its (UK GDPR) requirements. The law applies to businesses subject to the UK GDPR and/or the Privacy ...

Most people associate data protection with legislation, most recently the Data Protection Act 1998 and the General Data Protection Regulation 2016 (GDPR). However, it should be appreciated that this ...

Kai Keller (@kaimkeller) is a global leadership fellow at the World Economic Forum and leads the organization's work at the cross-section of innovation and financial stability. The Facebook-Cambridge ...