top of page

EU Companies To Be Aware of Brexit and The Data Protection Representative

Brexit And The GDPR: What Does Brexit Mean For Your EU Business?

Brexit will change pretty much every centre capacity for EU organizations that work with the UK: from exchange to the guideline, recruiting and transport, there's basically nothing that goes immaculate by the withdrawal of the UK from the EU and the single market. Information security is probably not going to be at the bleeding edge of organizations' brains during this period, yet there are main problems confronting information regulators and processors because of the GDPR.

During the progress time frame (for example until 31 December 2020), the GDPR keeps on applying to the UK. Notwithstanding, the connection between the GDPR and Brexit starting in 2021 is disrupted. The UK is not, at this point a 'Part State' and will be considered as a "third nation" for GDPR purposes as from 1 January 2021. It will in this way need to arrange sufficiency status with the EU. What this involves and what amount of time it will require is generally not yet decided, as the two players must concede to an answer. Up to that point, information moves from the EU to the UK will turn out to be boundlessly more muddled.

This is what you need to think about the GDPR and Brexit in case you're an EU organization and you offer items or administrations to people who are in the UK or in the event that you screen the conduct of such people!

Will Companies Be Able to Send Data Between the EU and the UK?

As of now, the UK government doesn't expect to consider the EU as a third nation as far as UK information handling. Accordingly, UK organizations will have the option to keep sending information to the EU. In any case, the EU has not responded to this responsibility, which implies that EU information moves to the UK will confront limitations.

The outcomes are probably going to be muddled. UK-based associations will battle to serve clients inside the EU. It will likewise introduce one of a kind difficulties on the island of Ireland just as for Gibraltar/Spain, where attaches with the EU are private.

Lifting the limitations will rely upon the UK and each applicable organization meeting the EU's protections for supporting information moves. The necessities for third nation information moves are definite in Chapter V of the GDPR.

The UK: A Safe Place for Data Post-Brexit?

The GDPR necessitates that information moves to any third nation happen just with nations assigned as 'satisfactory' by the European Commission.

Nations with ampleness are those that utilization an EU-identical degree of information assurance. Therefore, they aren't limited by Article 46 and 47 of the GDPR, and information can stream between the EU and these nations unbounded or checks. As of now, nations perceived as being satisfactory for information moves incorporate Andorra, Argentina, Faroe Islands, Guernsey, Israel, Isle of Man, Jersey, New Zealand, Switzerland, and Uruguay.

Canada and Japan are additionally included, however, there are constraints to information moves to these nations. In Canada, just business associations advantage. In Japan, the sufficiency choice just covers private area associations.

The U.S. was likewise included through the US-EU Privacy Shield – however just for U.S. organizations that joined to the system – however, this component was as of late discredited by the Court of Justice of the EU, implying that information moves between the EU and the US are not, at this point considered as protected or secured, except if proper shields are set up and if the privileges of people are enforceable, and successful legitimate cures are accessible.

What comes next for the UK will rely upon any information assurance arrangements worked out in the change period. The UK as of now utilizes the Data Protection Act 2018, which gave necessities like the GDPR regarding security and straightforwardness.

Be that as it may, the most exhaustive comprehension of what will be the UK variant of the GDPR can right now be found in the Data Protection, Privacy and Electronic Communications (EU Exit) Regulations 2019.

When Will the Data Transfer Rules Change?

The Withdrawal Agreement recognized by the EU and the UK government specified a progress period to last from January 31, 2020, to December 31, 2020. During this period, the UK consented to keep adhering to EU laws and guidelines – including the GDPR – in spite of the 'leave' occurring in January. As from 1 January 2021, the UK will turn into a third nation.

Therefore, information moves proceed as typical for both EU and UK organizations and inhabitants for the length of 2020, until the finish of the change time frame.

In any case, there won't be a total separation. Any EU-starting information in the UK preceding the finish of the progress time frame will at a present profit by the GDPR as composed and revised by the EU. The item is a stopping board that keeps on securing the protection of people in the EU paying little mind to the result of exchanges for 2021 and past.

Remember This Specific Obligation!

In the event that your EU organization doesn't have a foundation in the UK and you offer items or administrations to people who are in the Uk or on the off chance that you screen their conduct, at that point, you will in all likelihood need to delegate a UK information insurance agent.

The UK's information assurance authority (ICO) affirms that "the UK government plans that after the progress period closes, the UK adaptation of the GDPR will say that a regulator or processor situated external the UK – however, which should, in any case, conform to the UK GDPR – must designate a UK agent."

A UK information assurance agent isn't a Data Protection Officer (DPO). All things considered, a UK agent is a characteristic individual or body inside the UK who is your place of contact for people in the UK, just as for the controller.

To be consistent with the UK GDPR, you will require an information insurance agent set up before the finish of the progress time frame (for example as from 1 January 2021).

More information about company and crypto license registration in Estonia:

Consulting24 OÜ is the fastest-growing consultancy company in Estonia by volume and has obtained over 300 crypto licenses. We have both tailored and ready-made companies for sale. Consulting services cover: company registration in Estonia, acquire a crypto license, open crypto-friendly banking, local/director AML recruitment, accept debit/credit card payments, draft terms & conditions.

If you are interested in services, contact us


#brexit #data #dataprotection #digitalcurrency #bitcoin #crypto #cryptocurrencyconsulting #bitcoinvalue #blockchain #cryptocurrencyconsultingfirm #consulting24 #estonianmafia #estonia #companyinestonia #companyformation #companysetup

bottom of page