Lydira

← /legal/dpa

UK GDPR DPA

For UK Customers. Inherits the EU GDPR DPA with terminology + transfer-mechanism substitutions (IDTA or SCCs + UK Addendum).

jurisdiction · United Kingdom · template v2026-Q2 · lang en

pending external legal review

This template has not yet been reviewed by external legal counsel. Execution requires counsel-reviewed revisions; contact legal@lydira.com .

Relationship to the EU DPA

The EU GDPR DPA applies in its entirety to UK personal data with the following substitutions:

EU termUK equivalent
”GDPR""UK GDPR” + “Data Protection Act 2018"
"Union or Member State law""UK law"
"Supervisory Authority""Information Commissioner’s Office (ICO)"
"EEA""United Kingdom"
"EU Standard Contractual Clauses""UK International Data Transfer Agreement (IDTA)” or “EU SCCs + UK Addendum”

Cross-border transfers from the UK

Where personal data transfers outside the UK to a country without an adequacy decision, Processor relies on the UK IDTA (or EU SCCs with the UK Addendum) embedded in upstream vendor DPAs.

UK-specific rights

Data Subjects may exercise their rights under Part 3 of the DPA 2018 in addition to UK GDPR rights. Processor assists Controller with responses per §6(e) of the EU template.

Supervisory authority

The ICO is the designated Supervisory Authority. Personal-data breaches requiring notification are reported to the ICO within 72 hours.

Governing law

Laws of England and Wales. Disputes subject to the exclusive jurisdiction of the English courts.

Signatures as per the EU DPA template. Contact legal@lydira.com to request the executable document.

← All DPA templates