Explained

Here’s our overview of what to expect from DUAA and what potential implications it has for the video games industry. If you enjoy this article and want deeper analysis or tailored advice and support, then get in touch – we’d be happy to discuss how Flux Digital Policy’s expertise can meet your needs.

DUAA emerged in October 2024 as a revised version of the Data Protection and Digital Information Bill (DPDI Bill) proposed by the previous Conservative Government. That earlier proposal faced significant changes and could not be approved before the general election. Among other areas, DUAA introduces reforms to the UK GDPR and Privacy and Electronic Communications Regulations (PECR), addressing areas such as children’s data management, the use of cookies, and digital ID. Importantly, the contentious issue of using copyrighted materials for AI training—a topic of increasing interest to creative industries, including game developers—was left open for future discussions.

DUAA became law after receiving Royal Assent on 19 June. According to the Information Commissioner's Office (ICO), a range of guidance on enforcement and compliance with the new legislation (some of which will be open to consultation) is set to be published within approximately six to nine months. This brings with it a variety of significant considerations for businesses, including online games, particularly those within the dynamic data environment.