UK GDPR: Primary legislation governing data protection in the UK post-Brexit, setting out fundamental principles for data processing, controller obligations, and data subject rights
Data Protection Act 2018: UK's implementation of data protection standards, complementing and supplementing the UK GDPR with specific national requirements
PECR 2003: Privacy and Electronic Communications Regulations governing electronic communications, including rules on cookies, marketing, and communication privacy
ICO Joint Controller Guidance: Regulatory guidance from the Information Commissioner's Office specifically addressing joint controller arrangements and responsibilities
EU GDPR Case Law: Relevant precedents from EU court decisions that remain influential in UK data protection interpretation post-Brexit
English Contract Law: Common law principles governing contract formation, interpretation, and enforcement in England and Wales
Joint Controller Responsibilities: Clear delineation of respective responsibilities between controllers including data subject rights management and compliance obligations
Data Breach Procedures: Protocols for handling and notifying data breaches, including timing, responsibilities, and communication requirements
Liability Framework: Structure for allocating liability between joint controllers for breaches and non-compliance
Transparency Requirements: Obligations to provide clear information to data subjects about the joint controller arrangement and their respective roles
