Could UK’s Planned GDPR Implementation Signal Global Trend?

August 9, 2017


Earlier this week, the UK Government announced its plans to introduce new legislation that will give citizens greater control of their personal data. The legislation will expand on existing law that allows people ‘the right to be forgotten’ which (mostly) applies to internet search engines. Outside of public, scientific and historic interest, the new regulation potentially gives people the right to ensure all businesses delete their personal data if requested.

The proposals outline several key areas in which data regulation will change. Broadly speaking, these are:

  • Allowing for simpler withdrawal of consent for companies holding personal data
  • Allowing people to ask for their data to be deleted
  • Requiring explicit consent in cases of sensitive personal data
  • Expands the definition of personal data to include cookies, IP address and DNA

The legislation, which is widely interpreted as an implementation of the EU’s incoming General Data Protection Regulation (GDPR), is designed to align the UK’s data regulation with the EU’s, following the former’s scheduled departure from the European Union.

Although the impact on businesses is still being debated, with companies facing fines for non-compliance, the legislation will result in businesses having to be more accountable for their handling of customer data.

As such, service providers will need to ensure they adjust the way to respond to customers’ data requests, but more importantly, ensure they have systems in place for appropriately storing and making use of data. With GDPR coming into effect in May 2018, non-European service providers operating in other EU Member States will have to make similar adjustments.

According to the EU-wide regulation, personal data can only be transferred to countries outside of Europe where an adequate level of protection is guaranteed. As such, the impact of GDPR is likely to be felt well beyond the borders of Europe; non-EU service providers that operate in European markets are also likely to be affected by GDPR.

The issue of GDPR compliance fits into broader issue of how companies store and use personal data following dozens of high-profile data breaches in recent years. With consumers increasingly aware of the value of personal data, brands are having to demonstrate to their customers that they are handling their data responsibly.

With GDPR coming into effect in May 2018, many global service providers are now confronting a crossroads with how they handle customer data. Regardless of whether companies operate outside of the EU, those that choose to adopt stronger data privacy measures will inevitably seek to market themselves as more reliable and trustworthy than their competitors.

Companies seeking to implement stronger data protection measures can do so with relative ease by adopting third party identity solutions designed with this principle in mind. Mobile Connect, with its privacy promise through the “privacy by design” principle that guarantees users control over which companies they share their data with along with what data is shared, is one such solution. For more information on how Mobile Connect can be used to service your business, please visit


Operator cooperation in South Korea has created a successful identity To ensure broad service provider adoption, SKT and the other Korean operators realised that they needed to offer a single identity solution with full market coverage, and subsequ...

Read more | See all Identity Resources

Driving Mobile Connect Usage – Turkcell Looking to improve its customers’ experience and further differentiate its proposition, Turkcell launched Mobile Connect initially on its self-care mobile application and websi...

Read more | See all Identity Resources

Mobile Connect London Summit: Presentations Taking place on the 25th and 26th April, the Mobile Connect London Summit was a forum for leading figures in the wider mobile industry to debate the most pressing issues in the...

Read more | See all Identity Resources

The PSD2 Opportunity: Mobile Operators and Fintech This paper discusses the opportunities relating to the partnership between mobile network operators and fintech companies, and how both parties can benefit from each others&#...

Read more | See all Identity Resources

SK Telecom: Integrating Existing Identity Solutions into Mobile Connec In December 2016, SKT adapted both T-Auth and T-ID to comply with the Mobile Connect specifications. The goal was to make it easier for international customers to use SKT’s app...

Read more | See all Identity Resources

Seminar Presentations from Mobile World Congress 2017 Mobile World Congress 2017 hosted three industry seminars on Mobile Connect and the future of digital identity.  You can find out more about each of these subjects by downloadin...

Read more | See all Identity Resources

3 Reasons to Attend MWCA’s Identity Seminar Whilst digital technology has stimulated the growth of new and innovative services across practically every sector in the, service providers have yet to fully capitalise on this ...

Read more | Visit Identity Blog

Could UK’s Planned GDPR Implementation Signal Global Trend? Earlier this week, the UK Government announced its plans to introduce new legislation that will give citizens greater control of their personal data. The legislation will expand ...

Read more | Visit Identity Blog

MWCA: Digital Identity in the Innovation City See below for a list of digital identity demonstrations in the GSMA Innovation City As the Americas experiences explosive growth in its digital economy, businesses across the...

Read more | Visit Identity Blog

Markets Turn Their Focus to Cross-Border Trade of Digital Services Since the drafting of eIDAS in 2014, there has been a renewed interest from businesses, particularly in Europe, in secure cross-border trade using digital services. Initiatives s...

Read more | Visit Identity Blog

Mobile Connect-eIDAS Pilot Prepares for Secure Cross-Border Trade Marta Ienco, Head of the Government & Regulatory affairs, Personal Data   As we draw closer to the implementation of the eIDAS Regulation in September 2018, both governments...

Read more | Visit Identity Blog

Asia’s Mobile Industry Unites behind Mobile Connect Download presentations from the event Shanghai—A broad array of MNO’s across Asia have underscored their commitment to Mobile Connect after revealing how the identity solutio...

Read more | Visit Identity Blog

Mobile Connect Summit – Singapore November 21, 2017 Following April’s successful Mobile Connect Summit in London, we are pleased to confirm that we will soon be hosting another regional Summit – this time in Singapore...

Read more | See all Identity Events

Contact GSMA Legal Email Preference Centre Copyright © 2017 GSMA. GSM and the GSM Logo are registered and owned by the GSMA.