22 lines
903 B
Org Mode
22 lines
903 B
Org Mode
:PROPERTIES:
|
|
:ID: auto-uk-gdpr
|
|
:CREATED: [2026-05-23 Sat]
|
|
:END:
|
|
#+title:
|
|
#+filetags: :passepartout:compliance:framework:uk:
|
|
|
|
|
|
Post-Brexit, the UK maintains its own version of GDPR via the Data Protection
|
|
Act 2018. Substantively identical to EU GDPR but diverging over time. The UK
|
|
has announced separate reforms targeting AI and digital identity. ICO (Information
|
|
Commissioner's Office) enforces. Maximum fines: 17.5M GBP or 4% of global turnover.
|
|
|
|
Why it matters: UK GDPR is EU GDPR's twin market — any gate package designed
|
|
for EU GDPR ports directly with verified translation of terminology (supervisory
|
|
authority → ICO, DPA → equivalent UK contract clauses). The gate stack's ACL2
|
|
prover can verify that the UK version's rules are consistent with the EU version
|
|
(and alert when they diverge). This is a concrete ACL2 application.
|
|
|
|
** NIS2 (Network and Information Security Directive)
|
|
|