Data Policy – GDPR Brexit

A no-deal Brexit may affect your business if you receive data from the EU/EEA.  Currently data can move freely between countries in the EU providing it conforms to the General Data Protection Regulation (GDPR).  However, in the event of leaving the EU with no-deal, the UK will be subject to the same rules as other external countries and will need to wait for an adequacy ruling that proves out data protection standards.  Sending data to the EU won’t be a problem but this will affect how businesses receive data from countries in the European Union and European Economic Area.

To avoid losing access to vital operational data, companies are being told to review their contracts and add clauses where necessary.  Advice on how to comply with EU data protection laws can be found at and the Information Commissioner’s Office has a provided a tool to help write appropriate new contracts here.