On Wednesday, 8 March, the Department for Science, Innovation and Technology introduced the Data Protection and Digital Information (No.2) Bill (DPDIB) into Parliament. The revised DPDIB was described as a common-sense revision of the EU General Data Protection Regulation (GDPR) developed in consultation with businesses to unlock £4.7 billion in savings and reduce administrative burdens. The revised DPDIB replaces the original version proposed by the Department for Digital, Culture, Media and Sport (DCMS) in July 2022, which was then paused in September following Liz Truss's appointment as prime minister.
Secretary of State for Science, Innovation and Technology Michelle Donelan said, "...this new Bill ensures that a vitally important data protection regime is tailored to the UK’s own needs and our customs."
In a statement, Information Commissioner John Edwards said, “I welcome the reintroduction of the Data Protection and Digital Information Bill and support its ambition to enable organisations to grow and innovate whilst maintaining high standards of data protection rights. Data protection law needs to give people confidence to share their information to use the products and services that power our economy and society. The Bill will ensure my office can continue to operate as a trusted, fair and independent regulator. We look forward to continuing to work constructively with the Government to monitor how these reforms are expressed in the Bill as it continues its journey through Parliament.”
The full 212-page revised DPDIB is available on the UK Parliament website.
Additional commentary and reactions:
- The IAPP posted a summary of the revised DPDIB's announcement.
- IAPP Research and Insights Director Joe Jones and former deputy director of international data transfers at the DCMS quickly scanned the 212-page DPDIB and offered his initial reaction, including ten key takeaways.
- Highlights of keynote speeches to kick off the IAPP Data Protection Intensive: UK 2023 in London from Information Commissioner John Edwards and Liberal Democrat House of Lords spokesperson for Science, Innovation and Technology Tim Clement-Jones on Wednesday provided first impressions of the revised DPDIB.
- The Open Rights Group warns the revised DPDIB fails to address privacy concerns and expands the ways businesses and government bodies can process, use and re-use personal data.
- Big Brother Watch are similarly critical in its initial response, claiming that this "bonfire of safeguards will allow all sorts of actors to harvest and exploit our data more than ever before."
- During the keynote presentations on the last day of the IAPP Data Protection Intensive: UK 2023, Secretary of State for the Department of Science, Innovation and Technology Michelle Donelan shared her perspective on the revised DPDIB.
- In their summary assessment, Pinsent Masons make the point that the revised DPDIB contains fewer changes than were indicated would be made during the Conservative party conference under the leadership of Liz Truss. Kathryn Wynn suggests, "this perhaps reflects the reality that any changes made to the UK data protection framework need to be within the bounds of what the European Commission would endorse under an ‘adequacy’ agreement, given the costs to businesses in the UK if the UK regime were to fail the EU’s adequacy assessment."
- Mischon de Reya has conducted a detailed analysis of the revised DPDIB, concluding that there appears to be approximately a 1% difference. An additional insight determines that those wishing to comply with or use its provisions must now look at three documents.
- Adweek considers the revised DPDIB from the perspective of digital advertisers. The article points out that while the DPDIB aims to "expand the list of cookies falling outside the consent requirement focus on basic analytics and functional cookies," the industry would benefit from some ad measurement cookies being included, such as contextual ads.
Editors note: We will update this summary article with more details as they emerge.
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 4,350 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.