Finland’s Technology Innovation System

I.Introduction Having sustained the negative repercussions following the global financial crisis of 2008, Taiwan’s average economic growth rate decreased from 4.4 percent (during 2000-2007 years) to 3 percent (2008-2012). This phenomenon highlighted the intrinsic problems the Taiwanese economic growth paradigm was facing, seen from the perspective of its development momentum and industrial framework: sluggish growth of the manufacturing industries and the weakening productivity of the service sector. Moreover, the bleak investment climate of the post-2008 era discouraged domestic investors injecting capital into the local economy, rendering a prolonged negative investment growth rate. To further exacerbation, the European Debt Crisis of 2011 – 2012 has impacted to such detriment of private investors and enterprises, that confidence and willingness to invest in the private sector were utterly disfavored. It can be observed that as Taiwan’s industrial core strength is largely concentrated within the the manufacturing sector, the service sector, on the other hand, dwindles. Similarly, the country’s manufacturing efforts have been largely centered upon the Information & Communications Technology (ICT) industry, where the norm of production has been the fulfillment of international orders in components manufacturing and Original Equipment Manufacturing (OEM). Additionally, the raising-up of society’s ecological awareness has further halted the development of the upstream petrochemical and metal industry. Consumer goods manufacturing growth impetus too has been stagnated. Against the backdrop of the aforementioned factors at play as well as the competitive pressure exerted on Taiwan by force of the rapid global and regional economic integration developments, plans to upgrade and transform the existing industrial framework, consequently, arises out as an necessary course of action by the state. Accordingly, Taiwan’s Executive Yuan approved and launched the “Industrial Upgrading and Transformation Action Plan”, on the 13th of October 2014, aiming to reform traditional industries, reinforcing core manufacturing capacities and fostering innovative enterprises, through the implementation of four principal strategies: Upgrading of Product Grade and Value, Establishment of Complete Supply Chain, Setting-up of System Integration Solutions Capability, Acceleration of Growth in the Innovative Sector. II.Current challenges confronting Taiwanese industries 1.Effective apportionment of industrial development funds Despite that Research and Development (R&D) funds takes up 3.02% of Taiwan’s national GDP, there has been a decrease of the country’s investment in industrial and technology research. Currently Taiwan’s research efforts have been directed mostly into manufacturing process improvement, as well as into the high-tech sector, however, traditional and service industries on the other hand are lacking in investments. If research funds for the last decade could be more efficiently distributed, enterprises would be equally encouraged to likewise invest in innovation research. However, it should be noted that Taiwan’s Small and Medium Enterprises (SME) based on their traditional developmental models, do not place research as their top priority. Unlike practices in countries such as Germany and Korea, the research fund input by private enterprises into academic and research institutions is still a relatively unfamiliar exercise in Taiwan. With regards to investment focus, the over-concentration in ICTs should be redirected to accommodate growth possibilities for other industries as well. It has been observed that research investments in the pharmaceutical and electric equipment manufacturing sector has increased, yet in order to not fall into the race-to-the-bottom trap for lowest of costs, enterprises should be continually encouraged to develop high-quality and innovative products and services that would stand out. 2.Human talent and labor force issues Taiwan’s labor force, age 15 to 64, will have reached its peak in 2015, after which will slowly decline. It has been estimated that in 2011 the working population would amount to a meager 55.8%. If by mathematical deduction, based on an annual growth rate of 3%, 4% and 5%, in the year 2020 the labor scarcity would increase from 379,000, 580,000 to 780,000 accordingly. Therefore, it is crucial that productivity must increase, otherwise labor shortage of the future will inevitably stagnate economic growth. Notwithstanding that Taiwan’s demographical changes have lead to a decrease in labor force; the unfavorable working conditions so far has induced skilled professionals to seek employment abroad. The aging society along with decrease in birth rates has further exacerbated the existing cul-de-sac in securing a robust workforce. In 1995 the employment rate under the age of 34 was 46.35%, yet in 2010 it dropped to a daunting 37.6%. 3.Proportional land-use and environmental concerns Taiwan’s Environmental Impact Assessment (EIA) is a time-consuming and often unpredictable process that has substantially deterred investor’s confidence. Additionally, there exists a disproportionate use of land resources in Taiwan, given that demand for its use predominantly stems from the northern and middle region of the country. Should the government choose to balance out the utilization of land resources across Taiwan through labor and tax policies, the situation may be corrected accordingly. III.Industrial Upgrading and Transformation Strategies The current action plan commences its implementation from October 2014 to end of December 2024. The expected industrial development outcomes are as follows: (1) Total output value of the manufacturing sector starting from 2013 at NTD 13.93 trillion is expected to grow in 2020 to NTD 19.46 trillion. (2) Total GDP of the service sector, starting at 3.03 trillion from 2011 is expected to grow in 2020 to 4.75 trillion NTD. 1.Strategy No.1 : Upgrading of product grade and value Given that Taiwan’s manufacturing industry’s rate for added value has been declining year after year, the industry should strive to evolve itself to be more qualitative and value-added oriented, starting from the development of high-end products, including accordingly high-value research efforts in harnessing essential technologies, in the metallic materials, screws and nuts manufacturing sector, aviation, petrochemical, textile and food industries etc. (1) Furtherance of quality research Through the employment of Technology Development Program (TDP) Organizations, Industrial TDP and Academic TDP, theme-based and pro-active Research and Development programs, along with other related secondary assistance measures, the industrial research capability will be expanded. The key is in targeting research in high-end products so that critical technology can be reaped as a result. (2) Facilitating the formation of research alliances with upper-, mid- and downstream enterprises Through the formation of research and development alliances, the localization of material and equipment supply is secured; hence resulting in national autonomy in production capacity. Furthermore, supply chain between industrial component makers and end-product manufacturers are to be conjoined and maintained. National enterprises too are to be pushed forth towards industrial research development, materializing the technical evolution of mid- and downstream industries. (3) Integrative development assistance in Testing and Certification The government will support integrative development in testing and certification, in an effort to boost national competitive advantage thorough benefitting from industrial clusters as well as strengthening value-added logistics services, including collaboration in related value-added services. (4) Establishment of international logistics centre Projection of high-value product and industrial cluster image, through the establishment of an international logistics centre. 2.Strategy No.2 : Establishment of a Complete Supply Chain The establishing a robust and comprehensive supply chain is has at its aim transforming national production capabilities to be sovereign and self-sustaining, without having to resort to intervention of foreign corporations. This is attained through the securing of key materials, components and equipments manufacturing capabilities. This strategy finds its application in the field of machine tool controllers, flat panel display materials, semiconductor devices (3D1C), high-end applications processor AP, solar cell materials, special alloys for the aviation industry, panel equipment, electric vehicle motors, power batteries, bicycle electronic speed controller (ESC), electrical silicon steel, robotics, etc. The main measures listed are as follows: (1) Review of industry gaps After comprehensive review of existing technology gaps depicted by industry, research and academic institutions, government, strategies are to be devised, so that foreign technology can be introduced, such as by way of cooperative ventures, in order to promote domestic autonomous development models. (2) Coordination of Research and Development unions – building-up of autonomous supply chain. Integrating mid- and downstream research and development unions in order to set up a uniform standard in equipment, components and materials in its functional specifications. (3) Application-theme-based research programs Through the release of public notice, industries are invited to submit research proposals focusing on specific areas, so that businesses are aided in developing their own research capabilities in core technologies and products. (4) Promotion of cross-industry cooperation to expand fields of mutual application Continuously expanding field of technical application and facilitating cross-industry cooperation; Taking advantage of international platform to induce cross-border technical collaboration. 3.Strategy No.3 : Setting-up of System Integration Solutions capability Expanding turnkey-factory and turnkey-project system integration capabilities, in order to increase and stimulate export growth; Combination of smart automation systems to strengthen hardware and software integration, hence, boosting system integration solution capacity, allowing stand-alone machinery to evolve into a total solution plant, thus creating additional fields of application and services, effectively expanding the value-chain. These type of transitions are to be seen in the following areas: turnkey-factory and turnkey-project exports, intelligent automated manufacturing, cloud industry, lifestyle (key example: U-Bike in Taipei City) industry, solar factory, wood-working machinery, machine tools, food/paper mills, rubber and plastic machines sector. Specific implementation measure s includes: (1) Listing of national export capability – using domestic market as test bed for future global business opportunities Overall listing of all national system integration capabilities and gaps and further assistance in building domestic “test beds” for system integration projects, so that in the future system-integration solutions can be exported abroad, especially to the emerging economies (including ASEAN, Mainland China) where business opportunities should be fully explored. The current action plan should simultaneously assist these national enterprises in their marketing efforts. (2) Formation of System Integration business alliances and Strengthening of export capability through creation of flagship team Formation of system integration business alliances, through the use of national equipment and technology, with an aim to comply with global market’s needs. Promotion of export of turnkey-factory and turnkey-projects, in order to make an entrance to the global high-value system integration market. Bolstering of international exchanges, allowing European and Asian banking experts assist Taiwanese enterprises in enhancing bids efforts. (3) Establishing of financial assistance schemes to help national enterprises in their overseas bidding efforts Cooperation with financial institutes creating financial support schemes in syndicated loans for overseas bidding, in order to assist national businesses in exporting their turnkey-factories and turnkey-solutions abroad. 4. Strategy No.4 : Acceleration of growth in the innovative sectors Given Taiwan economy’s over-dependence on the growth of the electronics industry, a new mainstream industry replacement should be developed. Moreover, the blur distinction between the manufacturing, service and other industries, presses Taiwan to develop cross-fields of application markets, so that the market opportunities of the future can be fully explored. Examples of these markets include: Smart Campus, Intelligent Transportation System, Smart Health, Smart City, B4G/5G Communications, Strategic Service Industries, Next-Generation Semiconductors, Next-Generation Visual Display, 3D Printing, New Drugs and Medical Instruments, Smart Entertainment, Lifestyle industry (for instance the combination of plan factory and leisure tourism), offshore wind power plant, digital content (including digital learning), deep sea water. Concrete measures include: (1) Promotion of cooperation between enterprises and research institutions to increase efficiency in the functioning of the national innovation process Fostering of Industry-academic cooperation, combining pioneering academic research results with efficient production capability; Cultivation of key technology, accumulation of core intellectual property, strengthening integration of industrial technology and its market application, as well as, establishment of circulation integration platform and operational model for intellectual property. (2) Creating the ideal Ecosystem for innovation industries Strategic planning of demo site, constructing an ideal habitat for the flourishing of innovation industries, as well as the inland solution capability. Promotion of international-level testing environment, helping domestic industries to be integrated with overseas markets and urging the development of new business models through open competition. Encouraging international cooperation efforts, connecting domestic technological innovation capacities with industries abroad. (3) Integration of Cross-Branch Advisory Resources and Deregulation to further support Industrial Development Cross-administrations consultations further deregulation to support an ideal industrial development environment and overcoming traditional cross-branch developmental limitations in an effort to develop innovation industries. IV. Conclusion Taiwan is currently at a pivotal stage in upgrading its industry, the role of the government will be clearly evidenced by its efforts in promoting cross-branch/cross-fields cooperation, establishing a industrial-academic cooperation platform. Simultaneously, the implementation of land, human resources, fiscal, financial and environmental policies will be adopted to further improve the investment ambient, so that Taiwan’s businesses, research institutions and the government could all come together, endeavoring to help Taiwan breakthrough its currently economic impasse through a thorough industrial upgrading. Moreover, it can be argued that the real essence of the present action plan lies in the urge to transform Taiwan’s traditional industries into incubation centers for innovative products and services. With the rapid evolution of ICTs, accelerating development and popular use of Big Data and the Internet of Things, traditional industries can no longer afford to overlook its relation with these technologies and the emerging industries that are backed by them. It is only through the close and intimate interconnection between these two industries that Taiwan’s economy would eventually get the opportunity to discard its outdated growth model based on “quantity” and “cost”. It is believed that the aforementioned interaction is an imperative that would allow Taiwanese industries to redefine its own value amidst fierce global market competition. The principal efforts by the Taiwanese government are in nurturing such a dialogue to occur with the necessary platform, as well as financial and human resources. An illustration of the aforementioned vision can be seen from the “Industrie 4.0” project lead by Germany – the development of intelligent manufacturing, through close government, business and academic cooperation, combining the internet of things development, creating promising business opportunities of the Smart Manufacturing and Services market. This is the direction that Taiwan should be leading itself too. References 1.Executive Yuan, Republic of China http://www.ey.gov.tw/en/（last visited: 2015.02.06） 2.Industrial Development Bureau, Ministry of Economic Affairs http://www.moeaidb.gov.tw/（last visited: 2015.02.06） 3.Industrial Upgrading and Transformation Action Plan http://www.moeaidb.gov.tw/external/ctlr?PRO=filepath.DownloadFile&f=policy&t=f&id=4024（last visited: 2015.02.06）

The Research on ownership of cell therapy products 1. Issues concerning ownership of cell therapy products 　　Regarding the issue of ownership interests, American Medical Association(AMA)has pointed out in 2016 that using human tissues to develop commercially available products raises question about who holds property rights in human biological materials[1]. In United States, there have been several disputes concern the issue of the whether the donor of the cell therapy can claim ownership of the product, including Moore v. Regents of University of California(1990)[2], Greenberg v. Miami Children's Hospital Research Institute(2003)[3], and Washington University v. Catalona(2007)[4]. The courts tend to hold that since cells and tissues were donated voluntarily, the donors had already lost their property rights of their cells and tissues at the time of the donation. In Moore case, even if the researchers used Moore’s cells to obtain commercial benefits in an involuntary situation, the court still held that the property rights of removed cells were not suitable to be claimed by their donor, so as to avoid the burden for researcher to clarify whether the use of cells violates the wishes of the donors and therefore decrease the legal risk for R&D activities. United Kingdom Medical Research Council(MRC)also noted in 2019 that the donated human material is usually described as ‘gifts’, and donors of samples are not usually regarded as having ownership or property rights in these[5]. Accordingly, both USA and UK tends to believe that it is not suitable for cell donors to claim ownership. 2. The ownership of cell therapy products in the lens of Taiwan’s Civil Code 　　In Taiwan, Article 766 of Civil Code stipulated: “Unless otherwise provided by the Act, the component parts of a thing and the natural profits thereof, belong, even after their separation from the thing, to the owner of the thing.” Accordingly, many scholars believe that the ownership of separated body parts of the human body belong to the person whom the parts were separated from. Therefore, it should be considered that the ownership of the cells obtained from the donor still belongs to the donor. In addition, since it is stipulated in Article 406 of Civil Code that “A gift is a contract whereby the parties agree that one of the parties delivers his property gratuitously to another party and the latter agrees to accept it.”, if the act of donation can be considered as a gift relationship, then the ownership of the cells has been delivered from donor to other party who accept it accordingly. 　　However, in the different versions of Regenerative Medicine Biologics Regulation (draft) proposed by Taiwan legislators, some of which replace the term “donor” with “provider”. Therefore, for cell providers, instead of cell donors, after providing cells, whether they can claim ownership of cell therapy product still needs further discussion. 　　According to Article 69 of the Civil Code, it is stipulated that “Natural profits are products of the earth, animals, and other products which are produced from another thing without diminution of its substance.” In addition, Article 766 of the Civil Code stipulated that “Unless otherwise provided by the Act, the component parts of a thing and the natural profits thereof, belong, even after their separation from the thing, to the owner of the thing.” Thus, many scholars believe that when the product is organic, original substance and the natural profits thereof are all belong to the owner of the original substance. For example, when proteins are produced from isolated cells, the proteins can be deemed as natural profits and the ownership of proteins and isolated cells all belong to the owner of the cells[6]. 　　Nevertheless, according to Article 814 of the Civil Code, it is stipulated that “When a person has contributed work to a personal property belonging to another, the ownership of the personal property upon which the work is done belongs to the owner of the material thereof. However, if the value of the contributing work obviously exceeds the value of the material, the ownership of the personal property upon which the work is done belongs to the contributing person.” Thus, scholar believes that since regenerative medical technology, which induces cell differentiation, involves quite complex biotechnology technology, and should be deemed as contributing work. Therefore, the ownership of cell products after contributing work should belongs to the contributing person[7]. Thus, if the provider provides the cells to the researcher, after complex biotechnology contributing work, the original ownership of the cells should be deemed to have been eliminated, and there is no basis for providers to claim ownership. 　　However, since the development of cell therapy products involves a series of R&D activities, it still need to be clarified that who is entitled to the ownership of the final cell therapy products. According to Taiwan’s Civil Code, the ownership of product after contributing work should belongs to the contributing person. However, when there are numerous contributing persons, which person should the ownership belong to, might be determined on a case-by-case basis. 3. Conclusion 　　The biggest difference between cell therapy products and all other small molecule drugs or biologics is that original cell materials are provided by donors or providers, and the whole development process involves numerous contributing persons. Hence, ownership disputes are prone to arise. 　　In addition to the above-discussed disputes, United Kingdom Co-ordinating Committee on Cancer Research(UKCCCR)also noted that there is a long list of people and organizations who might lay claim to the ownership of specimens and their derivatives, including the donor and relatives, the surgeon and pathologist, the hospital authority where the sample was taken, the scientists engaged in the research, the institution where the research work was carried out, the funding organization supporting the research and any collaborating commercial company. Thus, the ultimate control of subsequent ownership and patent rights will need to be negotiated[8]. 　　Since the same issues might also occur in Taiwan, while developing cell therapy products, carefully clarifying the ownership between stakeholders is necessary for avoiding possible dispute. [1]American Medical Association [AMA], Commercial Use of Human Biological Materials, Code of Medical Ethics Opinion 7.3.9, Nov. 14, 2016, https://www.ama-assn.org/delivering-care/ethics/commercial-use-human-biological-materials (last visited Jan. 3, 2021). [2]Moore v. Regents of University of California, 793 P.2d 479 (Cal. 1990) [3]Greenberg v. Miami Children's Hospital Research Institute, 264 F. Suppl. 2d, 1064 (SD Fl. 2003) [4]Washington University v. Catalona, 490 F 3d 667 (8th Cir. 2007) [5]Medical Research Council [MRC], Human Tissue and Biological Samples for Use in Research: Operational and Ethical Guidelines, 2019, https://mrc.ukri.org/publications/browse/human-tissue-and-biological-samples-for-use-in-research/ (last visited Jan. 3, 2021). [6]Wen-Hui Chiu, The legal entitlement of human body, tissue and derivatives in civil law, Angle Publishing, 2016, at 327. [7]id, at 341. [8]Okano, M., Takebayashi, S., Okumura, K., Li, E., Gaudray, P., Carle, G. F., & Bliek, J. UKCCCR guidelines for the use of cell lines in cancer research.Cytogenetic and Genome Research,86(3-4), 1999, https://europepmc.org/backend/ptpmcrender.fcgi?accid=PMC2363383&blobtype=pdf (last visited Jan. 3, 2021).

Introduction to the “Public Procurement for Startups” mechanism I.Backgrounds 　　According to the EU’s statistics, government procurement budget accounted for over 14% of GDP. And, according to the media report, the total amount of government procurement in Taiwan in 2017 accounted for nearly 8%. Therefore, the government’s procurement power has gradually become a policy tool for the government to promote the development of innovative products and services. 　　In 2017, the Executive Yuan of the R.O.C.（Taiwan）announced a government procurement policy named “Government as Good Partners with Startups （政府成為新創好夥伴）”[1] to encourage government agencies and State-owned Enterprises to procure and adopt innovative goods or services provided by startups. This policy was subsequently implemented through an action plan named “Public Procurement for Startups”（新創採購）[2] by the Small and Medium Enterprise Administration（SMEA）.The action plan mainly includes two important parts：One created the procurement process for startups to enter the government contracts market through inter-entities contracts. The other accelerated the collaboration of the government agencies and startups through empirical demonstration. II.Facilitating the procurement process for startups to enter the government market 　　In order to help startups enter the government contracts market in a more efficient way, the SMEA conducts the procurement of inter-entity supply contracts with suppliers, especially startups, for the supply of innovative goods or services. An inter-entity supply contract[3] is a special contractual framework, under which the contracting entity on behalf of two or more other contracting parties signs a contract with suppliers and formulates the specifics and price of products or services provided through the public procurement process. Through the process of calling for tenders, price competition and so on, winning tenderers will be selected and listed on the Government E-Procurement System. This framework allows those contracting entities obtain orders and acquire products or services which they need in a more efficient way so it increases government agencies’ willingness to procure and use innovative products and services. 　　From 2018, the SMEA started to undertake the survey of innovative products and services that government agencies usually needed and conducted the procurement of inter-entity supply contracts for two rounds every year. As a result, the SMEA plays an important role to bridge the demand and supply sides for innovative products or services by means of implementing the forth-mentioned survey and procurement process. Moreover, in order to explore more innovative products and services with high quality and suitable for government agencies and public institutions, the SMEA actively networked with various stakeholders, including incubators, accelerators, startups mentoring programs sponsored by private and public sectors and so on. 　　Initially the items to be procured were categorized into four themes which were named the Smart Innovations, the Smart Eco, the Smart Healthcare, and the Smart Security. Later, in order to show the diversity of the innovation of startups which response well to various social issues, from 2019, the SMEA introduced two new theme solicitations titled the Smart Education and the Smart Agriculture to the inter-entities contracts. 　　Those items included the power management systems, the AI automated recognition and image warning system, the chatbot for public service, unmanned flying vehicles, aerial photography services and so on. Take the popular AI image warning system as an example, the system is used by police officers to make instant evidence searching and image recording. Other government agencies apply the innovative system to the investigation of illegal logging and school safety surveillance. 　　Moreover, the SMEA has also offered subsidy for local governments tobuy those items provided by startups. That is the coordinated supporting measure which allows startups the equal playing field to compete with large companies. The Subsidy scheme is based on the Guideline for Subsidies on Procurement of Innovative Products and Services[3] (approved by the Executive Yuan on March 29, 2018 and revised on Feb. 20, 2021). In the Guideline, “innovative products and services” refer to the products, technologies, labor, service flows or items and services rendered with creative activities through deploying scientific or technical means and a certain degree of innovations by startups with less than five years in operation. Such innovative products and services are displayed for the inter-entity supply contractual framework administered by the SMEA for government procurement. III.Accelerating the collaboration of the government agencies and startups through empirical demonstration 　　To assist startups to prove their concepts or services, and become more familiar with the governemnrt’s needs, the SMEA also created a mechanism called the “Solving Governmental Problems by Star-up Innovation”（政府出題˙新創解題）. It plans to collect government agencies’ needs, and then solicit innovative proposals from startups. After their proposals are accepted, startups will be given a grant up to one million NT dollars to conduct empirical studies on solution with government agencies for about half a year. 　　Take the cooperation between the “Taoyuan Long Term Care Institute for Older People and the Biotech Startup” for example, a care system with sanitary aids was introduced to provide automatic detection, cleanup and dry services for the patients’discharges, thus saving 95% of cleaning time for caregivers. In the past, caregivers usually spent 4 hours on the average in inspecting old patients, cleaning and replacing their bedsheets as their busy daily routines. Inadequate caregivers makes it difficult to maintain the care quality. If the problem was not addressed immediately, it would make the life of old patients more difficult. IV.Achievements to date 　　Since the promotion of the products and services of the startups and the launch of the “Public Procurement for Startups” program in 2018, 68 startups, with the SMEA’s assistance, have entered the government procurement contracts market, and more than 100 government agencies have adopted the innovative resolutions. With the encouragement for them in adopting and utilizing the fruits of the startups, it has generated more than NT$150 million in cooperative business opportunities. V.Conclusions 　　While more and more startups are obtaining business opportunities from the favorable procurement process, constant innovation remains the key to success. As such, the SMEA has regularly visited the government agencies-buyers to obtain feedbacks from startups so as to adjust and optimize the innovative products or services. The SMEA has also regularly renewed the specifics and items of the procurement list every year to keep introducing and supplying high-quality products or services to the government agencies. [1] Policy for investment environment optimization for Startups（2017）,available athttps://www.ndc.gov.tw/nc_27_28382.（last visited on July 30, 2021 ) [2] https://www.spp.org.tw/spp/（last visited on July 30, 2021 ) [3] Article 93 of Government Procurement Act：I An entity may execute an inter-entity supply contract with a supplier for the supply of property or services that are commonly needed by entities. II The regulations for a procurement of an inter-entity supply contract, the matters specified in the tender documentation and contract, applicable entities, and the related matters shall be prescribed by the responsible entity. [4] https://law.moea.gov.tw/LawContent.aspx?id=GL000555（last visited on July 30, 2021）

Post Brexit – An Update on the United Kingdom Privacy Regime 2021/9/10 　　After lengthy talks, on 31 January 2020, the United Kingdom (‘UK’) finally exited the European Union (‘EU’). Then, the UK shifted into a transition period. The UK government was bombarded with questions from all stakeholders. In particular, the data and privacy industry yelled out the loudest – what am I going to do with data flowing from the EU to the UK? Privacy professionals queried – would the UK have a new privacy regime that significantly departs from the General Data Protection Regulation (‘GDPR’)? Eventually, the UK made a compromise with all stakeholders – the British, the Europeans and the rest of the world – by bridging its privacy laws with the GDPR. On 28 June 2021, the UK obtained an adequacy decision from the EU.[1] This was widely anticipated but also widely known to be delayed, as it was heavily impacted by the aftermaths of the invalidation of the US- EU Privacy Shield.[2] 　　While the rest of the world seems to silently observe the transition undertaken by the UK, post-Brexit changes to the UK’s privacy regime is not only a domestic or regional matter, it is an international matter. Global supply chains and cross border data flows will be affected, shuffling the global economy into a new order. Therefore, it is crucial as citizens of a digital economy to unpack and understand the current UK privacy regime. This paper intends to give the reader a brief introduction to the current privacy regime of the UK. The author proposes to set out the structure of the UK privacy legislation, and to discuss important privacy topics. This paper only focuses on the general processing regime, which is the regime that is most relevant to general stakeholders. UK Privacy Legislation 　　There are two main privacy legislation in the UK – the Data Protection Act 2018 (‘DPA’) and the United Kingdom General Data Protection Act (‘UK GDPR’). These two acts must be read together in order to form a coherent understanding of the current UK privacy regime. 　　The UK GDPR is the creature of Brexit. The UK government wanted a smooth transition out of the EU and acknowledged that they needed to preserve the GDPR in their domestic privacy regime to an extent that would allow them to secure an adequacy decision. The UK government also wanted to create less impact on private companies. Thus, the UK GDPR was born. Largely it aligns closely with the GDPR, supplemented by the DPA. ICO 　　The Information Commissioner’s Office (‘ICO’) is the independent authority supervising the compliance of privacy laws in the UK. Prior to Brexit, the ICO was the UK’s supervisory authority under the GDPR. A unique feature of the ICO’s powers and functions is that it adopts a notice system. The ICO has power to issue four types of notices: information notices, assessment notices, enforcement notices and penalty notices.[3] The information notice requires controllers or processors to provide information. The ICO must issue an assessment notice before conducting data protection audits. Enforcement is only exercisable by giving an enforcement notice. Administrative fines are only exercisable by giving a penalty notice. Territorial Application 　　Section 207(1A) of the DPA states that the DPA applies to any controller or processor established in the UK, regardless where the processing of personal data takes place. Like the GDPR, the DPA and the UK GDPR have an extraterritorial reach to overseas controllers or processors. The DPA and the UK GDPR apply to overseas controllers or processors who process personal data relating to data subjects in the UK, and the processing activities are related to the offering of goods or services, or the monitoring of data subjects’ behavior.[4] Transfers of Personal Data to Third Countries 　　On 28 June 2021, the UK received an adequacy decision from the EU.[5] This means that until 27 June 2025, data can continue to flow freely between the UK and the European Economic Area (‘EEA’). 　　As for transferring personal data to third countries other than the EU, the UK has similar laws to the GDPR. Both the DPA and the UK GDPR restrict controllers or processors from transferring personal data to third countries. A transfer of personal data to a third country is permitted if it is based on adequacy regulations.[6] An EU adequacy decision is known as ‘adequacy regulations’ under the UK regime. 　　If there is no adequacy regulations, then a transfer of personal data to a third country will only be permitted if it is covered by appropriate safeguards, including standard data protection clauses, binding corporate rules, codes of conduct, and certifications.[7] The ICO intends to publish UK standard data protection clauses in 2021.[8] In the meantime, the EU has published a new set of standard data protection clauses (‘SCCs’).[9] However, it must be noted that the EU SCCs are not accepted to be valid in the UK, and may only be used for reference purposes. It is also worth noting that the UK has approved three certification schemes to assist organizations in demonstrating compliance to data protection laws.[10] Lawful Bases for Processing 　　Basically, the lawful bases for processing in the UK regime are the same as the GDPR. Six lawful bases are set out in article 6 of the UK GDPR. To process personal data, at least one of the following lawful bases must be satisfied:[11] The data subject has given consent to the processing; The processing is necessary for the performance of a contract; The processing is necessary for compliance with a legal obligation; The processing is necessary to protect vital interests of an individual – that is, protecting an individual’s life; The processing is necessary for the performance of a public task; The processing is necessary for the purpose of legitimate interests, unless other interests or fundamental rights and freedoms override those legitimate interests. Rights & Exemptions 　　The UK privacy regime, like the GDPR, gives data subjects certain rights. Most of the rights granted under the UK privacy regime is akin to the GDPR and can be found under the UK GDPR. Individual rights under the UK privacy regime is closely linked with its exemptions, this may be said to be a unique feature of the UK privacy regime which sets it apart from the GDPR. Under the DPA and the UK GDPR, there are certain exemptions, meaning organizations are exempted from certain obligations, most of them are associated with individual rights. For example, if data is processed for scientific or historical research purposes, or statistical purposes, organizations are exempted from provisions on the right of access, the right to rectification, the right to restrict processing and the right to object in certain circumstances.[12] Penalties 　　The penalty for infringement of the UK GDPR is the amount specified in article 83 of the UK GDPR.[13] If an amount is not specified, the penalty is the standard maximum amount.[14] The standard maximum amount, at the time of writing, is £8,700,000 (around 10 million Euros) or 2% of the undertaking’s total annual worldwide turnover in the preceding financial year.[15] In any other case, the standard maximum amount is £8,700,000 (around 10 million Euros).[16] Conclusion 　　The UK privacy regime closely aligns with the GDPR. However it would be too simple of a statement to say that the UK privacy regime is almost identical to the GDPR. The ICO’s unique enforcement powers exercised through a notice system is a distinct feature of the UK privacy regime. Recent legal trends show that the UK while trying to preserve its ties with the EU is gradually developing an independent privacy persona. The best example is that in regards to transfers to third countries, the UK has developed its first certification scheme and is attempting to develop its own standard data protection clauses. The UK’s transition out of the EU has certainly been interesting; however, the UK’s transformation from the EU is certainly awaited with awe. [1] Commission Implementing Decision of 28.6.2021, pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council on the adequate protection of personal data by the United Kingdom, C(2021) 4800 final,https://ec.europa.eu/info/sites/default/files/decision_on_the_adequate_protection_of_personal_data_by_the_united_kingdom_-_general_data_protection_regulation_en.pdf.. [2] Judgment of 16 July 2020, Data Protection Commissioner v. Facebook Ireland Limited, Maximillian Schrems, C-311/18, EU:C:2020:559, https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:62018CJ0311. [3] Data Protection Act 2018, §115. [4] Data Protection Act 2018, §207(1A); REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), art 3. [5] supra note 1. [6] Data Protection Act 2018, §17A-18; REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), art 44-50. [7] Data Protection Act 2018, §17A-18; REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), art 46-47. [8]International transfers after the UK exit from the EU Implementation Period, ICO, https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/international-transfers-after-uk-exit/ (last visited Sep. 10, 2021). [9] Standard contractual clauses for international transfers, European Commission, https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc/standard-contractual-clauses-international-transfers_en (last visited Sep. 10, 2021). [10] ICO, New certification schemes will “raise the bar” of data protection in children’s privacy, age assurance and asset disposal, ICO, Aug. 19, 2021, https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2021/08/ico-approves-the-first-uk-gdpr-certification-scheme-criteria/ (last visited Sep. 10, 2021). [11] REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), art 6(1)-(2); Lawful basis for processing, ICO, https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/lawful-basis-for-processing/ (last visited Sep. 10, 2021). [12] Data Protection Act 2018, sch 2, part 6, para 27. [13] id. at §157. [14] id. [15] id. [16] id.