Is the GDPR still in force post-Brexit?
Although it began as an EU regulation (enforced by the EU and applies to member countries), when the UK left the EU, the GDPR no longer applied to the data of UK citizens. We should, however, bear in mind:
1. UK organisations still need to comply with the EU Regulation if they ever handle the data of EU citizens.The Government has brought into law the Data Protection Act 2018 which is an almost carbon copy of the GDPR, so being GDPR compliant means you’re also Data Protection Act Compliant.
2. The EU Regulation, via the Data Protection, Privacy and Electronic Communication Regulations has been brought into UK law, amended to remove any mention of the EU and now stands as the UK GDPR.
As always, the ICO is the first port of call for all matters data protection.