Coronavirus update - please read

Following the Prime Minister’s announcement on the 31 October of a national lockdown, as of Thursday 5th November we are closing our office doors to the public.

However, we very much remain open for business with our teams working remotely and within our office premises, committed to providing you with the best possible service.  The health and wellbeing of our team, our clients and our visitors is our number one priority.

Heeding the current Government advice we have in place the following measures:

If you have any questions or queries, please do not hesitate to contact us at your local branch office, details of which can be found via our Contact Us page here

#AlwaysAtYourSide

Close window
This message will not appear again for another 5 days
 
Home | Business Law | Data Protection and GDPR in a post Brexit World

Data Protection and GDPR in a post Brexit World

October 22nd 2020
 

Joanne Stronach Director and Head of Employment & HR provides an some important information.

After the Brexit transition period ends on 31st December 2020, the EU GDPR will no longer be law in the UK. However, as the UK government intends to write the GDPR into UK law, from all practical perspectives, GDPR will continue to apply.

This means UK organisations and individuals that process or transfer the personal data of EU-27 citizens from the EU to the UK may need to take action to continue the free flow of data from the EU to the UK and guarantee the protection of EU data subjects. The action required will vary according to whether there is a deal (as set out in any withdrawal agreement) or no deal.

After transition, the UK will be a “third country” until the EU makes an adequacy decision regarding the UK. Until then, the transfer of personal data from the EEA to the UK will only be allowed if ‘appropriate safeguards’ are in place. Such safeguards include Standard Contractual Clauses (SCCs). SCCs must be inserted into contracts (whether controller to controller or controller to processor) before Brexit, and their wording must follow that approved by the European Commission.      

Transfers of personal data to the EU/ EEA from the UK will not be affected and transfers to and from countries outside of the EU/EEA will be subject to the same rules as now.

The Information Commissioner’s Office (ICO) has published a checklist of six steps that businesses can take now to start preparing for data protection compliance in the event of no-deal.

View this checklist here: https://ico.org.uk/for-organisations/data-protection-at-the-end-of-the-transition-period/

The government has also produced guidance on using personal data after Brexit, this is available here: https://www.gov.uk/guidance/using-personal-data-in-your-business-or-other-organisation-after-the-transition-period

Here to Help

To help SMEs prepare for Brexit, the UK200Group of which Cartmell Shepherd Solicitors are proud members of, have produced some useful materials including:

Preparing for Brexit: A Guide for SMEs

15point Action Plan

Brexit brings with it many changes, therefore it’s important that you take the necessary actions to protect your business and ensure you can continue to trade.

If you are looking for guidance and advice that is specific to your business and circumstances, please contact Joanne on 01228 585714 or click here to send her an email.

Share on Facebook Twitter LinkedIn Email
We'll call you...