flag, union jack, union, british, britain, uk, country, icon, patriotic, national, english, united kingdom, symbol, banner, emblem, official, nationality, ensign, british flag, wind, horizontal, red white and blue, blowing, fluttering, blue banner, union jack, union jack, union jack, union jack, union jack

Article 27 GDPR UK Representative

Data Sharing, Individual Privacy Rights, Processes & Policies / By

Why you need a UK Representative under Article 27 GDPR

Under Article 27 of the UK GDPR, a UK representative is needed, if you are a data controller or processor located outside the UK and offer goods or services to, or monitor the behavior of, UK residents, and you lack an establishment in the UK. 

What is required of a UK Representative?

If you are involved in any of the above then you are required to have a UK representative under Article 27 of the GDPR. Failure to appoint an approved representative will be breaking UK law.

Under the UK GDPR a representative must:

  • Cooperate with the supervisory authority, for the UK that is the ICO
  • Be the point of contact for data subjects in the UK
  • Enable communication between data subjects and your organisation
  • Maintain Records on Processing Activities (RoPA)
  • The supervisory authority can pursue enforcement of the organisation through the representative

The Representative:

  • Has been appointed to represent the data controller or data processor based outwith the UK
  • The Representative can be a person or a company
  • The Representative will be listed on your Privacy Policy as your point of contact within the UK

How Privacy in Business Can Help

Privacy in Business can help you meet your obligations under the UK Data Protection Act 2018 by fulfilling the UK Representative role. Helping you to maintain compliance with data protection law.

What We Will Do

We act as your UK representative, and work with you to ensure you are legal and compliant:

Before taking on any client for UK Representative services we will carry out a full compliance review and advise of any work that needs to be undertaken to take your compliance to a suitable level.

Our Work Will Include:

  • Ensure that your Privacy Policy is up to date with all of the required details for the UK representative
  • To Understand you data flows
  • Review your compliance reports
  • To be up to date on any data breaches or infringements that have happened
  • Establish a clear RoPA and maintain them on an ongoing basis
  • Advise on how you should respond to the UK supervisory authority ( the ICO)
  • Be the UK point of liaison with the ICO
  • Advise on issues relating to data protection that could have an impact on your organisation
Remember you need a UK representative:
  • If offer goods or services to individuals in the UK, or
  • If monitor the behaviour of individuals in the UK

If you  are interested in our UK Representative services, please contact us now.


Related Posts

Scroll to Top