What is GDPR?
The General Data Protection Regulation (GDPR) — retained in UK law as UK GDPR after Brexit — is the primary framework governing how organisations collect, store and process personal data. It grants individuals rights including access, rectification, erasure and portability of their data. Organisations must have a lawful basis for each processing activity, keep records of processing, and appoint a Data Protection Officer if they handle data at scale or process sensitive categories. The Information Commissioner's Office (ICO) enforces UK GDPR and can impose fines of up to £17.5 million or 4% of global annual turnover.
Related terms
Find verified data & consumer protection businesses
Search the Yolist directory for UK businesses whose listings reference GDPR.
Search YolistCite this definition
Yolist. (2026). What Is GDPR? Yolist UK Business & Trade Glossary. Retrieved June 9, 2026, from https://yolist.uk/glossary/gdprEmbed this definition
Paste this snippet into your article — it links back to the source definition.
<p>Source: <a href="https://yolist.uk/glossary/gdpr">GDPR — Yolist UK Business & Trade Glossary</a></p>