We operate within the heart of the energy and data sectors. This affords us with unique insights into the challenges and opportunities business, regulators and government face. Within this section you can view our latest views as well as the events we will be attending and hosting.
Home » Blog » GDPR:REPORT: Preparing for no-deal: Consequences on data protection
GDPR:REPORT: Preparing for no-deal: Consequences on data protection
7th February 2019
As discussions around Britain’s departure from the European Union are still ongoing, it is important that companies prepare for any potential scenario. In this piece, we analyse what could happen should the UK leave the EU on 29 March 2019 without having reached an agreement with the EU.
In this scenario, the EU and the UK will have failed to sign an agreement governing the future relationship between the two parties and, therefore, the UK will immediately leave the EU’s institutional structures without a transition period.
What does this scenario mean for data sharing?
In a nutshell, should the UK leave without a withdrawal agreement, it will become a third country under the GDPR.
The ICO has just published a long guidance on the practical implications, and it is crucial that companies prepare contingency plans to ensure business continuity.
To determine whether your company will be affected, it is necessary to ask whether the business falls under one of these categories: a UK based organisation receiving personal data from the EEA, or a UK based organisation sharing data with countries deemed adequate by the EEA.
Should you fall under the first category, you must implement appropriate safeguards in your contracts with your EEA counterparts if there is no better arrangement prior to the exit date. The most convenient approach is standard contractual clauses.
Similarly, if you are a UK-based organisation receiving personal data from countries currently covered by an EU adequacy decision, both your company and the organisation sending you the data must review how to comply with local law requirements on transfers of personal data.
To read the full article please visit the GDPR:REPORT website.
Our work means different things to different clients and we wanted to share some details of the projects we have managed to give you an insight into our capabilities and the impact we have delivered as a business.
Did you like what you read? Did you want to find out more about the subject? Or did you simply want to get in touch with us? Either way if you would like to get in touch with us you can do so using the form on the right.
Get In Touch
Want to find out more?
Follow the links below find out more about the services we provide, our insight into the industries we serve or the opportunities available with us.