The UK and GDPR commitments.
I am just looking further into our companies GDPR requirements and want to understand precisely what it is we need to be doing to ensure we are fully compliant throughout our business locations. Now that the UK are are no longer a member of the EU, I also need to know what impact that has on our compliance needs.
Can you provide any clarity?
Assign topic to the user
EU GDPR DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
EU GDPR DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
EU GDPR DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
The UK adopted the UK GDPR, an internal law that mirrors the EU GDPR with the aim to obtain the status of providing an adequate level of protection for freedoms and rights of individuals.
It is an annex of the Data Protection Act adopted on December 18th 2020 before Brexit.
Here you can find more information on UK GDPR: https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/
And on the website of the UK Government you can find the text with the modification of the EU GDPR adopted ad domestic General Data Protection Regulation (UK GDPR) https://www.gov.uk/government/publications/data-protection-law-eu-exit
Therefore, if your companies are located in the UK you will need to implement reference to the UK GDPR and the EU GDPR (i.e., in the privacy notice and in internal policies) and if any data transfer with EU happens, you need to indicate the Standard Contractual Clauses as a legal basis because actually UK is considered a third country and there is not an adequacy decision of the EU Commission.
I can suggest you monitor the Information Commissioner’s Officer (https://ico.co.uk) that is the Surveillance Authority for Data Protection in the UK for any update.
Here you can find more information about data transfer:
- 3 steps for data transfers according to GDPR: https://advisera.com/articles/3-steps-for-data-transfers-according-to-gdpr/
- Standard Contractual Clauses for the Transfer to Processors and Standard Contractual Clauses for the Transfer to Controllers.: https://info.advisera.com/eugdpracademy/free-download/standard-contractual-clauses-annexes
- Free webinar – How to make personal data transfers to other countries compliant with GDPR: https://advisera.com/webinars/how-to-make-personal-data-transfers-compliant-with-gdpr-free-webinar-on-demand/
If you need to understand how to process personal data in the light of EU GDPR you can consider enrolling in this EU GDPR Foundations Course: https://advisera.com/training/eu-gdpr-foundations-course//
Comment as guest or Sign in
Feb 11, 2021