UK Data Protection Act 2018
The UK Data Protection Act 2018 supplements the UK GDPR (retained EU law) and implements the Law Enforcement Directive provisions. It sets out the framework for data protection in the UK including the role and powers of the Information Commissioner's Office (ICO), processing conditions for law enforcement and intelligence services, and UK-specific derogations. Applies alongside the UK GDPR to all processing of personal data.
Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.
Framework Domains (5)
ICO
| Code | Title |
|---|---|
| UKDPA-4 | ICO Powers and Enforcement |
Part 3 Law Enforcement
| Code | Title |
|---|---|
| UKDPA-2 | Law Enforcement Processing (Part 3) |
Part 4 Intelligence
| Code | Title |
|---|---|
| UKDPA-3 | Intelligence Services Processing (Part 4) |
Scope
| Code | Title |
|---|---|
| UKDPA-1 | Scope, UK GDPR Implementation, Parts 1-2 |
Specific Topics
| Code | Title |
|---|---|
| UKDPA-5 | Children, Automated Decisions, Breach, International Transfers |
Frequently Asked Questions
What is UK Data Protection Act 2018?
UK Data Protection Act 2018 is a compliance framework from United Kingdom with 5 domains and 5 controls. The UK Data Protection Act 2018 supplements the UK GDPR (retained EU law) and implements the Law Enforcement Directive provisions. It sets out the framework for data protection in the UK including the role and powers of the Information Commissioner's Office (ICO), processing conditions for law enforcement and intelligence services, and UK-specific derogations. Applies alongside the UK GDPR to all processing of personal data. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.
How many controls does UK Data Protection Act 2018 have?
UK Data Protection Act 2018 has 5 controls organised across 5 domains. The largest domains are ICO (1 controls), Part 3 Law Enforcement (1 controls), Part 4 Intelligence (1 controls). Each control defines specific requirements that organisations must implement to achieve compliance.
What frameworks does UK Data Protection Act 2018 map to?
UK Data Protection Act 2018 does not currently have cross-framework mappings in our system. Check back as we continuously expand our mapping database.
How do I get started with UK Data Protection Act 2018 compliance?
Start your UK Data Protection Act 2018 compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about UK Data Protection Act 2018 requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 5 controls and track your progress.
Start Your Compliance Journey
Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 718 frameworks.
Get Started Free →Free forever — no credit card required