TRENDING:

General Data Protection Regulation (GDPR) , Governance & Risk Management , Privacy

Post Brexit, Free Flow of Data Likely to Continue

European Commission Reportedly Finds UK Data Protections Are Adequate Akshaya Asokan (asokan_akshaya) • February 16, 2021    
Post Brexit, Free Flow of Data Likely to Continue
Illustration: Miguel Á. Padriñán, Pixabay

The European Commission plans to roll out a new policy that paves the way for European Union nations and the U.K. to continue the free flow of personal data in the wake of Brexit, the Financial Times reports.

See Also: A Guide to Passwordless Anywhere

The Brexit deal, finalized on Dec. 28, 2020, included a clause that allows data transfers from Europe to the U.K. to continue for up to six more months, during which time the EU must make a ruling on whether the U.K.'s privacy rules are as strong as the EU's.

If the U.K.'s rules were judged as coming up short, the free flow of data could have ceased, and special legal agreements would have been needed for each transfer arrangement.

But the European Commission has determined the U.K. has adequate measures in place for the protection of personal information, the Financial Times reports. Its decision, however, has to be cleared by the European Data Protection Board before June 30.

Other Potential Hurdles

Each EU country has its own privacy regulator, which operates independently. So, even if the European Commission approves continued data transfers to the U.K., each regulator potentially could decide not to abide by the deal.

The courts could also come into play. For example, a privacy advocate could lodge a complaint against an EU ruling on data transfers, objecting to the level of access to EU citizens’ data by Britain's Secret Intelligence Service, aka MI6. Austrian activist Max Schrems objected to transfers of European data to the U.S., resulting in Privacy Shield regulations being invalidated.

Sapphire, a U.K.-based legal data privacy consultation service, notes that if the European Commission's ruling is not ratified, the U.K. might have to set up its own version of the EU's General Data Protection Regulation. Plus, U.K.-based organizations without a branch in the European Economic Area – the EU and associated countries - would have to appoint a representative in an EEA country.

Previous
DTEX Case Study: VicTrack
Next
Human Challenge: Hard For Humans, Easy For Bots

About the Author

Akshaya Asokan

Akshaya Asokan

Senior Correspondent, ISMG

Asokan is a U.K.-based senior correspondent for Information Security Media Group's global news desk. She previously worked with IDG and other publications, reporting on developments in technology, minority rights and education.



Around the Network

Top Privacy Considerations for Website Tracking Tools
Top Privacy Considerations for Website Tracking Tools
Integrating Generative AI Into the Threat Detection Process
Integrating Generative AI Into the Threat Detection Process
Checking Out Security Before Using AI Tools in Healthcare
Checking Out Security Before Using AI Tools in Healthcare
CyberArk CEO Touts New Browser That Secures Privileged Users
CyberArk CEO Touts New Browser That Secures Privileged Users
What's Inside Washington State's New My Health My Data Act
What's Inside Washington State's New My Health My Data Act
Closing Privacy 'Loopholes' in Reproductive Healthcare Data
Closing Privacy 'Loopholes' in Reproductive Healthcare Data
How to Simplify Data Protection within your Organization
How to Simplify Data Protection within your Organization
Are We Facing a Massive Cybersecurity Threat?
Are We Facing a Massive Cybersecurity Threat?
Securing OT and IoT Assets in an Interconnected World
Securing OT and IoT Assets in an Interconnected World
Why Cyber Defenders Need Partnerships, Tools and Education
Why Cyber Defenders Need Partnerships, Tools and Education

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing gdpr.inforisktoday.com, you agree to our use of cookies.