Data protection

Importance of protecting your data

Is your company data (e.g. customer records, accounts, management information) held on the Cloud? If the answer’s yes, please read on – it’s important.

Personal information has been able to flow freely between organisations in the UK and European Union due to the General Data Protection Regulation (GDPR) rules. The UK government has indicated that at the point of exit from the EU, there will be no substantive change to the rules governing personal data as GDPR will be absorbed into UK law.

The two-way free flow of personal information will not be as straightforward however if the UK leaves the EU without a withdrawal agreement that specifically provides for the continued flow of personal data. In such a case, transfers of personal information from the UK to EEA should not be affected, however data flow from EEA to the UK will be affected.

The UK will need to undergo an adequacy assessment of its data protection arrangements by the EU. However, the European Commission has stated repeatedly it will not commence its adequacy assessments of the UK until after the UK has left the EU. There would therefore be an “adequacy gap” immediately after a No Deal Exit, likely lasting for several years, until such time as the EU reaches a decision over whether the UK has adequate arrangements in place to allow for the free flow of personal data from the EEA to the UK. During this time the legal, free flow of personal data from the EEA will cease.

What should you do?

Don’t take the chance – CHECK NOW.

Next: people living in Wales >