UK GDPR

UK GDPR Approval number – CSC/003 and CSC/004

What is UK GDPR?

UK GDPR is the United Kingdom General Data Protection Regulation, which became effective on the 1st January 20211. It is a law that covers the key principles along with rights and obligations when processing personal data in the United Kingdom. It is based on the EU GDPR, which has been kept in UK law, and works in tandem with the Data Protection Act 20182. It applies to UK businesses who receive data from, or have offices in the EU and EEA.

What does ICO Approved mean?
In August 2022, ADISA concluded a three year process to achieve UK GDPR Certification Scheme status for ADISA Standard 8.0 (UK). The LOCS:23 Standard also holds ICO approval and ADISA Standard (EU) was submitted to the Irish Data Commission we hope that evaluation process to proceed with a similar outcome.
This means that the regulator has confirmed one way for organisations to confirm they are compliant with the law. By using a certified company organisations who release assets can be assured of compliance with the law not because their supplier tells them, not because ADISA does, but because the data regulatory themselves verifies compliance through certification.