Data protection guidance issued in case of a ‘no-deal’ Brexit

The UK data protection authority (ICO) and the Department for Culture, Media and Sport (DCMS) each issued no-deal Brexit data protection guidances. ICO produced a checklist highlighting six steps to take for preparing for data protection compliance if the UK leaves the EU on 29 March 2019 without a deal. These steps include to continue to implement GDPR compliance standards, and review data flows from the EEA, including from suppliers and processors. Meanwhile, the DCMS indicated a number of guidance to ensure the UK data protection framework continues to operate effectively when the UK is no longer an EU member state.