Brexit is likely to cause years of future uncertainty around data protection, including the legal mechanisms for data transfer to countries outside of the United Kingdom (“U.K.”). In the short term, there will be little to no impact on existing data transfer solutions implemented by companies that rely on the U.K. as an entry point into the European Union (“EU”). In the mid-term, with the scheduled implementation of the EU-U.S. Privacy Shield (“Privacy Shield”) in 2016 and the EU’s General Data Protection Regulation (“GDPR”) in 2018, the U.K. will either continue to be subject to EU laws by extending its membership in the European Economic Area (“EEA”) or it will create its own national data protection legislation. Although companies may have to rethink data transfer agreements, this will be part of a long term process as the future of U.K. data protection continues to unfold.
Short Term—What to Expect in the Next 12 Months
Continue Reading Keep Calm and Carry On: Data Protection Post Brexit