United Kingdom: Implemented UK GDPR including data transfer regulation

On 1 January 2021, the United Kingdom General Data Protection Regulation (UK GDPR), including data transfer regulation, entered into force. In accordance with the European Union (Withdrawal) Act 2018 and the Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2019, the UK GDPR is the national version of the EU's GDPR, amended to be in line with the UK legal system, which remains in force after UK's full withdrawal from the EU at the end of 2020. The UK GDPR sets out general rules regarding the processing of personal data, sharing, in many respects, the structure of the EU GDPR. The UK GDPR establishes the legal mechanisms according to which personal data transfers to third countries are permitted. The mechanisms include adequacy regulations for specific third countries, or the provisions of adequate safeguards, such as binding corporate rules, standard data protection clauses, approved codes of conduct, and approved certifications.