UK GDPR: Primary legislation governing data protection in the UK post-Brexit, setting requirements for processing and storing personal data, including audit logs containing personal information
Data Protection Act 2018: UK's implementation of data protection law, working alongside UK GDPR to provide a comprehensive framework for data protection
Companies Act 2006: Sets requirements for corporate record-keeping and maintenance of company books and records
Freedom of Information Act 2000: Governs public access to information held by public authorities, affecting how records must be maintained and accessed
Financial Services and Markets Act 2000: Regulatory framework for financial services industry, including specific requirements for record keeping and audit trails
FCA Handbook: Financial Conduct Authority's detailed regulatory requirements, including specific rules for audit trails and record retention in financial institutions
PRA Requirements: Prudential Regulation Authority's requirements for regulated financial institutions, including specific audit and record-keeping obligations
ISO 27001: International standard for information security management, providing framework for securing information including audit logs
SOC 2: Service Organization Control 2 requirements for managing customer data based on five trust principles: security, availability, processing integrity, confidentiality, and privacy
PCI DSS: Payment Card Industry Data Security Standard requirements for organizations handling credit card information, including audit trail requirements
Employment Rights Act 1996: Employment law framework affecting retention of employee-related records and audit logs
VAT Act 1994: Requirements for maintaining VAT records and related audit trails
Network and Information Systems Regulations 2018: Cybersecurity regulations requiring maintenance of security logs and audit trails for essential services and digital providers
NCSC Guidelines: National Cyber Security Centre's guidance on best practices for cybersecurity, including audit logging and retention
