Guidance

UK - Republic of Korea data bridge: supporting documents

These supporting documents relate to the regulations laid by the DCMS Secretary of State for the UK-Republic of Korea data bridge.

From:
Department for Science, Innovation and Technology and Department for Digital, Culture, Media & Sport
Published
23 November 2022
Last updated
19 December 2022 — See all updates

Documents

Personal Information Protection Act (English language)

PDF, 1.01 MB, 49 pages

Personal Information Protection Act (Korean language)

https://www.law.go.kr/lsSc.do?section=&menuId=1&subMenuId=15&tabMenuId=81&eventGubun=060101&query=%EA%B0%9C%EC%9D%B8%EC%A0%95%EB%B3%B4%EB%B3%B4%ED%98%B8%EB%B2%95#undefined

Supplementary rules for the interpretation and application of the Personal Information Protection Act related to the processing of personal data transferred to Korea (English language)

PDF, 749 KB, 25 pages

Supplementary rules for the interpretation and application of the Personal Information Protection Act related to the processing of personal data transferred to Korea (Korean language)

https://www.law.go.kr/LSW/admRulInfoP.do?admRulSeq=2100000206144

The Act on the Use and Protection of Credit Information (English language)

PDF, 725 KB, 67 pages

The Act on the Use and Protection of Credit Information (Korean language)

https://www.law.go.kr/%EB%B2%95%EB%A0%B9/%EC%8B%A0%EC%9A%A9%EC%A0%95%EB%B3%B4%EC%9D%98%20%EC%9D%B4%EC%9A%A9%20%EB%B0%8F%20%EB%B3%B4%ED%98%B8%EC%97%90%20%EA%B4%80%ED%95%9C%20%EB%B2%95%EB%A5%A0

The Data Protection (Adequacy) (Republic of Korea) Regulations 2022 - UK Statutory Instrument 2022 No. 1213

https://www.legislation.gov.uk/uksi/2022/1213/contents/made

Information Commissioner’s opinion: The UK government’s assessment of adequacy for the Republic of Korea for the general processing of personal data

https://ico.org.uk/media/about-the-ico/documents/4022818/rep-korea-adequacy-opinion-20221123.pdf

Details

The data bridge regulation (previously referred to as data adequacy) made by the UK government of the Republic of Korea came into effect on 19 December 2022.

The Secretary of State for Digital, Culture, Media and Sport laid the data bridge regulation on 23 November 2022, which determined that the Republic of Korea provides an adequate level of protection in respect of transfers of personal data. The scope of the decision is set out in the Statutory Instrument and covers Korean data protection legislation, namely the Personal Information Protection Act (General Law) (‘the PIPA’), with no exemptions.

A data bridge is granted by the UK to countries or jurisdictions which provide adequate standards of protection for personal data. It is the most straightforward mechanism for transferring personal data overseas and can also provide greater certainty and confidence in the regulatory landscape of another country. Once in place, UK-based organisations can transfer personal data to that country without restriction (within the scope of each regulation). In practice this means organisations (of any size) will no longer be required to put in place contractual safeguards.

The documents above provide information for members of the public who wish to review relevant Korean legislation referenced in the Statutory Instrument.

Published 23 November 2022
Last updated 19 December 2022 + show all updates

  1. Page updated to reflect that the UK-Republic of Korea data bridge regulation (previously referred to as data adequacy) came into effect on 19 December 2022.

  2. First published.

Related content