Hunton & Williams write:
On September 14, 2017, the UK Government introduced a new Data Protection Bill (the “Bill”) to Parliament. The Bill is intended to replace the UK’s existing Data Protection Act 1998 and enshrine the EU General Data Protection Regulation (the “GDPR”) into UK law once the UK has left the European Union. The GDPR allows EU Member States to enact, via national law, exemptions from the various provisions of the GDPR, which the Bill also seeks to implement.
In addition to implementing the GDPR into UK law, the Bill contains provisions intended to implement into UK law the EU Directive on the processing of personal data by government authorities for the purposes of the prevention, investigation, detection and prosecution of crime (the “Law Enforcement Directive”).
Read more on Privacy & Information Security Law Blog.