United Kingdom: Implemented UK GDPR including data protection regulation

On 1 January 2021, the United Kingdom General Data Protection Regulation (UK GDPR), including data protection regulation, entered into force. In accordance with the European Union (Withdrawal) Act 2018 and the Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019, the UK GDPR is the national version of the EU's GDPR, amended to be in line with the UK legal system, which remains in force after UK's full withdrawal from the EU at the end of 2020. The UK GDPR sets out general rules regarding the processing of personal data, sharing, in many respects, the structure of the EU GDPR. The UK GDPR establishes general principles and legal bases for the processing of personal data, data subject rights, and obligations for controllers and processors, such as, where applicable, the nomination of a UK representative, the requirement to carry out an impact assessment, and the nomination of a data protection officer.