Update on the UK Data (Use & Access) Act – and Why Clean Data Is More Crucial Than Ever

By |2025-06-18T11:26:49+00:00June 18th, 2025|

On 11 June 2025, UK Parliament completed the final round of “ping‑pong” over the Data (Use and Access) Bill in the House of Lords, paving the way for Royal Assent and its conversion into the Data (Use and Access) Act 2025 This is a major milestone in updating the UK’s data protection landscape post‑Brexit—and it signals that smart, responsible data use is now firmly on the national agenda. What You Should Know The Act introduces several important refinements: A staggered roll‑out of updated UK GDPR provisions, including relaxed rules around cookies, Data Subject Access Requests (DSAR), automated decision‑making, and strengthened provisions for scientific research A formal category of “recognised legitimate interests”, clarifying when data can be used without a full [...]

2024: A year for data protection regulation reform?

By |2023-11-27T12:14:35+00:00November 27th, 2023|

Following its airing at the recent King’s Speech the much-discussed Data Protection and Digital Innovation Bill (DPDI) will have its ‘remaining stages’ in the House of Commons on 29 November. There are 21 possible amendments to the Bill all most of which have been referred to as ‘common-sense’ and it is expected to fly through parliament, meaning it is likely to become law early next year. The DMA supports the ratification of the Bill having been heavily involved in shaping many of its elements. Key differences to GDPR include: How personal data is defined Under DPDI information will only be considered as identifiable by a person other than the controller or processor if that other person obtains the information as [...]

Data processing security is key data concern for 2023

By |2023-07-11T13:01:31+00:00July 11th, 2023|

Our latest review of the GDPR enforcements undertaken by the ICO over the past 12 months reveals that data processing security and right of access are the most common infringements since July 2022. Almost a third (30 per cent) of the 30 recorded infringements this year pertained to Article 5, the principles relating to data processing and of these 21 per cent were for Article 5 (f) which specifies that personal data must be processed in a manner that ensures appropriate security. Sixteen per cent contravened Article 15: Right of Access by the data subject and 15 per cent were non-compliant to Article 12 (data transparency) and Article 32 (security of processing). Last year the lion’s share of enforcements (61 [...]

Go to Top