903 B
903 B
Post-Brexit, the UK maintains its own version of GDPR via the Data Protection Act 2018. Substantively identical to EU GDPR but diverging over time. The UK has announced separate reforms targeting AI and digital identity. ICO (Information Commissioner's Office) enforces. Maximum fines: 17.5M GBP or 4% of global turnover.
Why it matters: UK GDPR is EU GDPR's twin market — any gate package designed for EU GDPR ports directly with verified translation of terminology (supervisory authority → ICO, DPA → equivalent UK contract clauses). The gate stack's ACL2 prover can verify that the UK version's rules are consistent with the EU version (and alert when they diverge). This is a concrete ACL2 application.