GDPR Representative Services does exactly what it says – in the UK post-Brexit, EU GDPR was brought directly into UK law by Act of Parliament. It has some derogations (each country can vary some bits) which are UK specific, but these were there before Brexit.
The relevant sections of the law are provided below and the links to the specific articles also include cross-references the to referring UK GDPR recitals.
We offer specific response protocols for clients that process health data, for example in the event of an adverse reaction in a clinical trial, and are happy to provide develop tailored protocols for other industry sectors.
We offer a menu of options, including dedicated landing pages on our website (see here), dedicated mail boxes, geographic telephone numbers, and other customised communication channels as required.
UK GDPR article 3 says:
Chapter I – General provisions: Territorial Scope
1. This Regulation applies to the processing of personal data in the context of the activities of an establishment of a controller or a processor in the Union, regardless of whether the processing takes place in the Union or not.
2. This Regulation applies to the processing of personal data of data subjects who are in the Union by a controller or processor not established in the Union, where the processing activities are related to:
(a) the offering of goods or services, irrespective of whether a payment of the data subject is required, to such data subjects in the Union; or
(b) the monitoring of their behaviour as far as their behaviour takes place within the Union.
3. This Regulation applies to the processing of personal data by a controller not established in the Union, but in a place where Member State law applies by virtue of public international law.
UK GDPR article 27 says: