EU-UK data transfers from 1st January 2021 – where are we?

29/12/20 – Prior to the announcement of the EU-UK Trade and Cooperation Agreement [1], I was having to explain to a client that it was looking increasing likely that, from 1st January 2021, transfers of personal data from organisations located in EEA countries to the UK would no longer be lawful.

Read more »

European Commission publishes new draft SCCs for consultation

19/11/20 – By way of background, transfers of EU citizens’ personal data to locations outside the European Economic Area (EEA) require a GDPR-permitted transfer mechanism.

Read more »

Special category data – what do I need to know?

Ok, let’s start with the basics.  What is ‘special category data’? Article 9 of the GDPR (as incorporated into UK law, and amended) (“UK GDPR”) defines special category data as: Personal data revealing: racial or ethnic origin political opinions religious or philosophical beliefs trade union membership. Data concerning: health a person’s sex life a person’s […]

Read more »

Demise of the EU-U.S. Privacy Shield

23/07/20 – If you, as a ‘data exporter’, want to transfer personal data to a country outside the EEA (and which is not one of the 12 countries that have been granted an adequacy decision by the European Commission), then you need to use one of the GDPR-approved ‘transfer mechanisms’.

Read more »

Get in touch

  • Your email address will only be used to respond to your message