No results found

All MRS websites use cookies to help us improve our services. Any data collected is anonymised. If you continue using this site without accepting cookies you may experience some performance issues. Read about our cookies here.

Accept and continue A white arrow

Reject all cookies A white arrow

Cookie Settings A white arrow

Fair Data

Brexit and GDPR

Fairdata

How it works

Who it's for

Why Fair Data?

Resources

Partners

GDPR

FAQs

Fair Data Accreditation Board

Regardless of the UK’s decision to leave the EU, data protection regulation will continue to be heavily influenced by EU laws right up until final agreements on the terms of withdrawal from the union.

This has been highlighted by The UK data protection authority, the Information Commissioner’s Office (ICO), who have also stressed that the Data Protection Act 2018 remains the law irrespective of the referendum result.

The precise nature of a post-Brexit UK-EU relationship will be a critical influence on how closely the UK will follow the letter and spirit of the rules in the Regulation.

Key implications:

1. GDPR requires adequacy for cross-border data transfers outside the EU - Post Brexit, the UK will need to ensure that it has an adequate level of data protection to continue cross-border trade with EU countries. This will need to mirror the requirements of GDPR.

2. GDPR has extra-territorial reach - GDPR applies to all organisations monitoring or processing the personal data of EU residents, regardless as to where the organisation is located. Businesses which offer goods or services across borders, or monitor activities of EU residents, will still be covered by EU data protection laws.scale

3. Data protection is vital for consumer trust - embedding privacy at all stages, and all touch points in the data journey, must continue to be a primary consideration for UK businesses. As awareness of data protection rights increases, the commercial implications, and potential reputational impact, means that all industries must focus on securing consumer and customer trust. monitoring

Additional steps

So, you need to continue taking action, regardless of the ongoing Brexit negotiations. Staying compliant is vital to avoid the robust penalty regime. Here are some additional steps you can take:

Identify your organisation’s personal data flows from the EU to the UK. These will need to be based on new adequate safeguard measures if the UK leaves the EU and is outside the European Economic Area (EEA).
Identify those activities that involve processing of data subjects in other EU member states. These will fall fully within the GDPR in light of its extra territorial scope.
Monitor the ICO’s guidance on Brexit and GDPR and stay close to MRS for advice on developments.
Update organisational plans as and when new guidance is released.

Get the latest MRS news

Our newsletters cover the latest MRS events, policy updates and research news.

The Market Research Society (MRS) is the world's leading research association. For all those who need, generate or interpret the evidence for making good business and policy decisions. Click here to find out more about us.

Membership

Company Partner

Initiatives

Standards

Global Insight Academy

Events

Resources

Fair Data

Brexit and GDPR

Fairdata

How it works

Who it's for

Why Fair Data?

Resources

Partners

GDPR

FAQs

Fair Data Accreditation Board

Get the latest MRS news

Research Jobfinder

Research Buyer's Guide (RBG)

Research Live

International Journal of Market Research (IJMR)

Fair Data

Geodemographics (GKB)

Recruiter Accreditation

Settings

Services

Membership

Company Partner

Initiatives

Standards

Global Insight Academy

Events

Resources

Fair Data

Brexit and GDPR

Fairdata

Get the latest MRS news