What Does the ICO Regulate? A Guide to the UK’s Data Protection Regulator
The ICO regulates UK data protection, freedom of information, electronic marketing and network security. Guide to ICO powers, penalties and enforcement under the DUAA 2025.
-
-
The DUAA Takes Effect: New ICO Powers Meet a Tougher Enforcement Stance
The Data (Use and Access) Act 2025 commenced on 5 February 2026, reforming automated decision-making, expanding ICO enforcement powers, and raising PECR fines to UK GDPR levels. Combined with record enforcement activity in 2025 and a new settlement procedure, the ICO is better equipped and more willing to act. What regulated businesses need to do now.
-
The Data (Use and Access) Act 2025: What It Means for UK Businesses
The Data (Use and Access) Act 2025 (DUAA) introduces sweeping changes in UK data regimes, from smart-data schemes and digital verification services to amendments of the Data Protection Act 2018 and UK GDPR. Rob Bratby of bratby.law guides UK businesses through compliance, strategic opportunities, and contract implications. Essential reading for counsel, transaction teams and commercial leaders.
-
Mobile operators obliged to retain location information across Europe
This article was published in March 2011 and reflects the regulatory position at that time. For current guidance on this topic, contact Bratby Law or see our latest insights. There has been some coverage recently of the case of Mr Spitz. Malte Spitz is a German green party politician and privacy advocate. He went to…
