After more than four years of Brexit negotiations, the UK is now only a few days away from the end of its transition period out of the EU.
Unfortunately, the negotiations – which can charitably be described as ‘disorganised’ – have left many people unsure of what exactly Brexit means for their organisation.
The GDPR (General Data Protection Regulation) in particular has been the cause of many headaches.
It’s an EU regulation, but its requirements don’t disappear on 1 January 2021 – not least because many organisations still work with EU-based businesses or handle EU residents’ personal data.
There’s also the DPA (Data Protection Act) 2018 and the UK GDPR – the version of the GDPR that applies to UK residents’ personal data – to contend with.
Altogether, this means that UK organisations must remain vigilant of their data protection requirements and understand what will change at the end of this year.
GRCI Law has been helping organisations understand the ramifications of Brexit throughout the year, with blogs such as:
- How to keep personal data flowing between the EU and the UK after Brexit
- The GDPR and EU representatives
- GDPR: Standard contractual clauses vs binding corporate rules
- Making your contracts GDPR compliant: a complete guide
We also offer expert guidance to help you negotiate your data protection requirements in the form of our DPO (data protection officer) as a service.
Under the GDPR, some organisations are legally required to appoint a DPO to oversee their data protection requirements, while others appoint one as a matter of good practice.
Having an independent expert ensures that you stay on top of your requirements and spot potential pitfalls before it’s too late.
With our DPO service, you avoid the expense and hassle of hiring an on-site expert, knowing that the support you need is only one phone call away.