UK GDPR and Data Protection Act 2018: Primary data protection legislation governing the processing, storage, and transfer of personal data in the UK
Privacy and Electronic Communications Regulations (PECR): Specific rules for electronic communications, cookies, and direct marketing
Consumer Rights Act 2015: Key legislation for B2C contracts governing consumer rights, unfair terms, and digital content
Unfair Contract Terms Act 1977: Controls unfair terms in contracts, particularly regarding limitation of liability and indemnities
Electronic Commerce (EC Directive) Regulations 2002: Governs electronic commerce and online service provision requirements
Network and Information Systems Regulations 2018: Legislation ensuring security of network and information systems for essential services
Computer Misuse Act 1990: Criminalizes unauthorized access to computer systems and related cybercrime
TUPE Regulations 2006: Protects employees' rights when business ownership or service provision changes
Copyright, Designs and Patents Act 1988: Governs intellectual property rights, particularly relevant for software and IT services
Contracts (Rights of Third Parties) Act 1999: Determines when third parties can enforce terms of a contract
Supply of Goods and Services Act 1982: Implies terms about quality and fitness for purpose in service contracts
Financial Services and Markets Act 2000: Regulatory framework for financial services, relevant if IT services involve financial sector
Bribery Act 2010: Anti-corruption legislation requiring adequate procedures to prevent bribery
Competition Act 1998: Prohibits anti-competitive agreements and abuse of dominant market position
ISO 27001: International standard for information security management systems
