We have been very cognisant of that risk in developing our proposals. As I said in my opening remarks, we do not wish to upset the apple cart and create a compliance headache for businesses, which would be entirely contrary to the aims of the Bill. A small business that is currently compliant with the GDPR will continue to be compliant under the new regime. However, we want to give businesses flexibility in regard to how they deliver that compliance, so that, for instance, they do not have to employ a data protection officer.
[Official Report, 17 April 2023, Vol. 731, c. 70.]
Letter of correction from the Minister for Data and Digital Infrastructure:
An error has been identified in the speech I gave on Second Reading of the Data Protection and Digital Information (No. 2) Bill.
The correct statement should have been: