UK & Europe
The UK left the EU on 31 January 2020 and entered into a transition period which ends at 11pm on 31 December 2020. Negotiations between the UK Government and the EU are ongoing, and the political tension is high as the deadline looms.
In the event that no agreement has been reached between the UK and the EU, the UK will exit with "no deal". Whatever deal is reached the eventual terms of the UK's exit from the EU will have wide data protection implications, particularly in respect of data flowing from the EEA to the UK, and internationally.
The continued flow of customers and employees personal data is vital to many businesses, supply chains and public authorities effective functioning, and the continued uncertainty surrounding the regime immediately post Brexit will have further increased the burden for organisations, who will need to plan now for the potential of a "no deal" scenario. Organisations will need to ensure that their existing and future data processing agreements are compatible with this new landscape.
In this guide we have set out the key legal, regulatory and practical changes to data protection that organisations will need to be aware of. We have also outlined key actions organisations can take now in order to address any data protection exposures triggered by a no-deal exit from the EU.
If you have any specific data protection concerns, we would welcome the opportunity to discuss these further with you.