GDPR after Brexit: what happens on 1 January 2021?

The UK has been in a transition period since its formal exit from the European Union on 31 January 2020, but this period is due to end on 31 December 2020. This means that, as of 1 January 2021, the UK will no longer be governed by EU regulations or legislation. Of course, this will have various impacts across the entire country including on the way we handle personal data.

As of 1 January 2021, the UK will be deemed to be a 'third country' with regards to personal data transfers from the European Economic Area (EEA). UK businesses carrying out business activities in the EEA or otherwise making international personal data transfers will need review their current processes to ensure compliance with applicable data protection laws moving forwards.

In this brief video, Sapna Desai explains which upcoming/recent changes in data protection law UK businesses should be aware of, what they can do to continue making personal data transfers to and from the EEA, and whether it is necessary to appoint a GDPR Representative.

For some information on this topic, please see this article.

Sapna is an associate in the corporate and commercial team and joined Russell-Cooke in March 2019.

Having previously worked as an in-house lawyer for two IT services companies, Sapna has gained invaluable experience of working in the technology industry and continues to regularly advise both established businesses and startups in this sector as well as other sectors including real estate, hospitality, fitness and retail.