Many organisations have yet to update their GDPR procedures for Brexit. Whilst the justifications for this are many and varied, one consistent message we are hearing is that organisations simply do not know what is required of them.

This is perhaps unsurprising given that, as with so many aspects of data protection compliance, there is no one size fits all solution. The situation is, of course, not helped by the ongoing uncertainty as to whether and when the UK will actually exit the EU and the terms of the deal, if any, under which it will leave.

Free guidance

In an effort to bring some clarity to the situation, Birketts has published a free guide, ‘Brexit and GDPR: What you need to know and do.’ The guide comprises a summary of the headline issues and terms that organisations planning for Brexit need to be aware of, together with a practical checklist enabling organisations to identify what compliance steps they will need to take.

Advice in brief

  1. Many organisations will need will need to update their data protection compliance measures for Brexit.
  2. It is important that you familiarise yourself with the issues that Brexit poses for GDPR compliance now. These are summarised in the Headline Issues section of our guide. It will take you less than 10 minutes to read.
  3. Use the Checklist section of our guide to identify what changes you need to make to prepare for Brexit.
  4. If the UK exits the EU without a deal in place, you will need to have implemented the changes by exit day.
  5. If the UK exits the EU with a deal in place, you will have a little more time to make changes and the specific changes required may vary slightly. Look out for Birketts updated guidance.