UK GDPR: UK General Data Protection Regulation - Primary legislation governing the processing and protection of personal data in the UK post-Brexit
Data Protection Act 2018: UK's implementation of data protection principles, working alongside UK GDPR to regulate personal data processing and protection
PECR: Privacy and Electronic Communications Regulations - Specific rules for electronic communications, marketing, and cookies
ISO 27001: International standard for information security management systems, providing framework for policies and procedures including controls and risk management
Cyber Essentials: UK government-backed scheme helping organizations protect against common cyber attacks, including certification requirements
Computer Misuse Act 1990: Criminal law legislation addressing unauthorized access to computer systems and related cybercrime
Fraud Act 2006: Legislation covering fraudulent activities, including those conducted through digital means
Employment Rights Act 1996: Framework for employment relationships, including aspects relevant to employee security responsibilities and data handling
Civil Contingencies Act 2004: Framework for disaster and emergency planning, relevant for business continuity aspects of security policies
Electronic Communications Act 2000: Legislation providing legal framework for electronic communications and digital signatures
Electronic Signatures Regulations 2002: Specific regulations governing the use and validity of electronic signatures in business and legal contexts
BS 10012:2017: British Standard for Personal Information Management System, providing framework for maintaining and improving GDPR compliance
ISO/IEC 27701: Privacy extension to ISO 27001, providing additional requirements for privacy information management
NIS Regulations: Network and Information Systems Regulations - Security requirements for operators of essential services and digital service providers
PCI DSS: Payment Card Industry Data Security Standard - Security standards required for organizations handling credit card data
