Which legislation incorporates the principles of the EU's General Data Protection Regulation (GDPR)?

The Data Protection Act 2018 was enacted in the United Kingdom to implement data protection reforms that align with the EU's General Data Protection Regulation (GDPR). This legislation reflects the principles and requirements outlined in the GDPR, enhancing data protection rights for individuals and establishing new obligations for organizations that handle personal data.

The act sets forth guidelines on how personal data should be collected, processed, and stored, ensuring that individuals have greater control over their personal information. It emphasizes the importance of consent, the right to access personal data, and the requirement for organizations to implement adequate security measures to protect that data.

The other options, while they may concern data privacy or governance in some manner, do not specifically incorporate the principles of the GDPR like the Data Protection Act 2018 does. Each serves different purposes or addresses other aspects of legal framework but lacks the direct alignment with the GDPR principles.