New UK Data Protection Bill introduced into the House of Lords

Published: 14 September 2017

The UK Government has yesterday introduced the new UK Data Protection Bill to the House of Lords which, if passed, will overhaul the current UK data protection regime.

In most respects the bill, which will come into force next May, will transfer the European Union's General Data Protection Regulation into UK law. The legislation will also be maintained after Brexit.

Whilst the proposals impose much heavier fines on those who do not protect personal data, the government said it had negotiated "vital" exemptions to create a more "proportionate" regime for Britain. The government had already unveiled other key provisions of the Data Protection Bill in August, including:

•Making it simpler for people to withdraw consent for their personal data to be used
•Letting people ask for data to be deleted
•And making re-identifying people from anonymised or pseudonymised data a criminal offence

In addition, UK firms that suffer a serious data breach could be fined up to £17m or 4% of global turnover. The current maximum fine firms can suffer for breaking data protection laws is £500,000. To read the proposed UK Data Protection Bill in full, please click here.

The Bailiwick of Guernsey's independent supervisory authority which regulates data protection legislation. The ODPA protects people by driving responsible use of personal information through helping organisations get it right, deterring harmful information handling, and taking enforcement action against significant non-compliance

Stay informed

Receive regular information and statistics related to our activities and governance

Follow the ODPA

The Office of the Data Protection Authority

+44 (0)1481 742074 enquiries@odpa.gg

St Martin's House, Le Bordage, St. Peter Port, Guernsey GY1 1BR

Newsletters sign-up Data Processing Notice Careers Cookies

Website by & Indulge