New plans to replace GDPR split UK tech

The UK has finally unveiled its alternative to the GDPR, the Data Protection and Digital Information Bill (DPDIB). The bill, which was introduced to Congress last week, aims to promote economic growth while protecting privacy.

Proposed rule We promise to reduce paperwork, reduce costs, facilitate transactions, and (please Lord) reduce cookie pop-ups. They also claim that over ten years he generated over £4 billion in savings (more on this later).

The UK’s exit from the EU casts a heavy shadow on the plan. In the bill pitch, the government promises to unlock the elusive Brexit dividend.

“Our system will be easier to understand and comply with, allowing us to take advantage of Britain’s many opportunities post-Brexit,” Technology Secretary Michelle Donnellan said in a statement. “Our businesses and citizens no longer need to be caught up in a barrier-based European GDPR.”

At least that’s the plan, but it’s already proven to be divisive.

cut the red tape

Data-driven trade is making a significant contribution to the UK’s coffers. In 2021, it will generate an estimated £259bn and 85% of UK services exports.

DPDIB envisions further rewards from simplified legal requirements.

“Our new legislation will free UK businesses from unnecessary bureaucracy, unlock new discoveries, drive next-generation technology, create jobs and boost the economy,” Donnellan said. increase.

All data regulation must balance protecting people and fostering innovation. Under GDPR, many businesses have become frustrated with the bureaucratic burden. DPDIB aims to bring scale back to business benefit.

“It was imperative to clarify the confusion and simplify the administrative burden.

Chris Combemale, CEO of the Data and Marketing Association (DMA), has worked with the government on the new regulations. He hopes the bill will provide a “catalyst for innovation” privacy Necessary protection for consumer trust.

“It was essential that this bill would protect important ethical principles in existing legislation while also clarifying areas of confusion and simplifying the burdensome administrative burden for small businesses,” Combemale said. told TNW in an email.

Writer Regulatory loads have proven to be common.Businesses welcome simplification the requirements of Record keeping, personal data processing and automated decision-making as the ability to Deny “annoying or excessive” data access requests.The new work has also received rave reviews. A framework for digital identities, additional resources for the UK data watchdog, and Increased fines for spam calls and text messages.

Chris Vaughan taniumEndpoint security company says the new rules are simpler than the GDPR.

“One of the main benefits of the new legislation is the business cost savings that GDPR will create, which is even more welcome as organizations continue to struggle in the current economic climate,” Vaughan told TNW. I’m talking

However, relaxing the rules can also increase risk.

privacy risk

Critics warn that the new law puts citizens at risk. More than 30 civil society groups are calling for the bill to be withdrawn over concerns that it will undermine data protections and harm marginalized groups.

Colin Hayhurst Mozik,privacy-Based search engines have been particularly plagued by declining accountability for “low-risk” data processing. He is also concerned that the bill enacts too many complex issues at once.

“My concern is that critical issues around innovation like AI are not receiving enough scrutiny and consideration,” says Hayhurst. “It is worth noting that the EU sees AI regulation as a very complex and important issue. completely separate invoice concentrate on this issue. ”

Hayhurst, in particular, AI Researching. The new bill gives commercial organizations the same freedoms as academics for any purpose. data Processing for research that is “reasonably described as being scientific”.

This could present huge opportunities for companies building AI on data collection. But larger companies with research arm such as Google’s DeepMind and Meta’s FAIR could offer even more power.

“Large technology companies with research groups can continue to collect and use all personal data in their possession to train AI in their research efforts,” says Hayhurst. “This all comes with risks. Unfortunately, this risk is overwhelmingly borne by the people whose data is fed to the machines, not the companies themselves.”