helping charities helping people

Welcome

You are not signed in. What would you like to do?

×

Manage your account

Hello ! You are signed in. What would you like to do?

Your Account
Tools
×

Data protection and Brexit

The Information Commissioner’s Office (ICO) has issued new guidance related to the UK’s exit from the European Union on 29th March 2019.

Leaving the EU – six steps to take

1. Continue to comply

Continue to apply GDPR standards and follow current ICO guidance. If you have a DPO, they can continue in the same role for both the UK and the Europe.

2. Transfers to the UK

Review your data flows and identify where you receive data into the UK from the EEA. Think about what GDPR safeguards you can put in place to ensure that data can continue to flow once we are outside the EU.

3. Transfers from the UK

Review your data flows and identify where you transfer data from the UK to any country outside the UK, as these will fall under new UK transfer and documentation provisions.

4. European operations

If you operate across Europe, review your structure, processing operations and data flows to assess how the UK’s exit from the EU will affect the data protection regimes that apply to you.

5. Documentation

Review your privacy information and your internal documentation to identify any details that will need updating when the UK leaves the EU.

6. Organisational awareness

Make sure key people in your organisation are aware of these key issues. Include these steps in any planning for leaving the EU, and keep up to date with the latest information and guidance.

Read Information Commissioner’s Office - Leaving the EU – six steps to take