UK GDPR: The UK General Data Protection Regulation - Primary legislation governing personal data processing and protection in the UK post-Brexit
Data Protection Act 2018: The UK's implementation of data protection legislation, working alongside UK GDPR to regulate personal data processing
PECR 2003: Privacy and Electronic Communications Regulations - Specific rules for electronic communications, marketing, and cookies
NIS Regulations 2018: Network and Information Systems Regulations - Framework for cybersecurity requirements for essential services and digital providers
Computer Misuse Act 1990: Legislation criminalizing unauthorized access to computer systems and data interference
RIPA 2000: Regulation of Investigatory Powers Act - Governs the interception of communications and use of surveillance
Trade Secrets Regulations 2018: Regulations providing legal framework for protection of trade secrets and confidential business information
Common Law Confidentiality: Common law principles protecting confidential information and trade secrets
UK Data Transfer Regulations: Regulations governing international data transfers and adequacy decisions post-Brexit
Employment Rights Act 1996: Legislation covering employee rights including aspects of data handling in employment context
Equality Act 2010: Legislation protecting against discrimination, including in data processing contexts
Consumer Rights Act 2015: Framework for consumer protection including digital content and services
E-Commerce Regulations 2002: Electronic Commerce Regulations governing online business activities and information security requirements
ISO 27001: International standard for information security management systems
PCI DSS: Payment Card Industry Data Security Standard - Requirements for organizations handling credit card information
Cyber Essentials: UK government-backed scheme providing baseline cybersecurity standards and certification
