Brexit Update: EU-US Privacy Shield

10 January 2019

On 20 December 2018, the US Department of Commerce issued updated standards of compliance for participants in the EU-US Privacy Shield Framework (“Privacy Shield”) to continue receiving personal data from the UK in reliance on the Privacy Shield after Brexit (which is due to take place on 29 March 2019). By way of a reminder, Privacy Shield is a framework for protecting the fundamental rights of anyone in the EU whose personal data is transferred to the United States for commercial purposes.

After Brexit, US organisations participating in Privacy Shield must implement the following additional measures:

  1. Any statement setting out a public commitment to comply with the Privacy Shield must expressly confirm that the commitment extends to personal data received from the UK in reliance on Privacy Shield.  Furthermore, if a participant plans to receive Human Resources (“HR”) data from the UK in reliance on Privacy Shield, it must also update its HR privacy policy; and
     
  2. A current Privacy Shield certification must be maintained and recertified annually.

The deadline for participants to adopt these measures will depend on whether the UK Government is able to finalise a withdrawal agreement with the EU. A participant that does not implement these measures will not be able to rely on the Privacy Shield to receive personal data from the UK after 29 March 2019 if there is no deal (i.e. no transition period) or 31 December 2020 at the end of the transition period in the event that the UK Government finalises a deal with the EU (each an “Applicable Date”). During the transition period the European Commission’s adequacy decision on the level of protection afforded to personal data by Privacy Shield would continue to apply (meaning it is treated as essentially equivalent to the level of data protection offered by EU law). Please see our blog from November 2018 for further information about the draft withdrawal agreement and the effect of adequacy decisions. 

After the Applicable Date, a participant that has publicly committed to comply with Privacy Shield with regard to personal data received from the UK will be required to cooperate and comply with the Information Commissioners Office (the UK’s data protection regulator).

Should you have any Brexit, GDPR or data protection queries, please contact Kingsley Napley’s Brexit or Data Protection teams.

Alexander Torpey

Associate

+44(0)20 3535 1657

atorpey@kingsleynapley.co.uk

Follow on Twitter

Download vCard

Print

Subscribe to blog RSS feed

Subscribe to all blog RSS feeds

Visit our Brexit hub for more information

LinkedIn Twitter Facebook Email to a friend

Brexit Bulletin Board

Brexit Bulletin Board

Brexit immigration podcast - a view from Europe

We chat to immigration specialists in Spain, Germany, France and Italy on what British citizens in those countries should be doing now. August/September 2019

Click here to listen

Brexit - What EU citizens living in the UK need to know

Read More

Brexit - what British citizens living in the EU need to know

READ MORE

No-deal Brexit policy update provides some relief for employers and EU citizens

5 September 2019

READ MORE

The EU Settlement Scheme - a guide for EU citizens living in the UK

Click here to play video

Brexit: business anxiety over freedom of movement U-turn

20 August 2019

READ MORE

Handle with care: why it’s time to treat EU nationals responsibly

30 August 2019

READ MORE

Glitches in the EU Settlement Scheme

5 August 2019

Read more

The suspension of parliament increases legal scrutiny of Brexit – and possibly a public inquiry?

29 August 2019

Read more

Kingsley Napley's immigration team sponsors Financial and Professional Services Post-Brexit Immigration Briefing

9 May 2019

READ MORE

Post-Brexit data sharing with EU regulators is key for FCA policing market abuse

1 February 2019

Read News Item

No-deal Brexit: transitional arrangements for EEA nationals arriving after 29 March 2019

29 January 2019

READ MORE

No deal Brexit: what this would mean for extradition?

23 January 2019

Rebecca Niblock blogs

EU Settlement Scheme - what you need to know

November 2018 - In this podcast Gillian Brownlee and Felicity Woof discuss the new EU Settlement Scheme which at the time of recording (in November 2018) is due to go live on 30 March 2019.

Listen to the podcast

'Playing by their own rules?' - Brexit blog series

Our Public Law team blogs about secondary legislation and Brexit.

View the blog series

Mutual trust remains until we leave: notification of intention to leave the EU not an exceptional circumstance

19 September 2018

Read the blog

No-deal Brexit and the impact on patient safety

20 September 2018

READ MORE

Divorced, beheaded, scrutinised? SIs and Henry VIII powers under review

31 August 2018

Read the blog

Brexit: "It was not this that I promised to do"

14 August 2018

Read the blog

Brexit and the European Arrest Warrant (EAW): at least now we know what we don’t know

9 August 2018

Read the blog

Could Brexit send Geraint Thomas into a spin?

30 July 2018 - Hanging over this year’s Tour de France, at least for this British cycling fan, was the realisation that this is probably the last Tour pre-Brexit, and so there is an additional level of uncertainty about what the 2019 post-Brexit edition will look like.

Read the blog

Holiday home/Retirement planning: will Brexit wreck it?

16 July 2018 - A question you may ponder as you relax on that sunlounger in the weeks ahead is whether you need to review your arrangements for any EU based property in light of Brexit.

Read the blog

Brexit and practising rights for lawyers

9 July 2018 - Two Solicitor friends of mine recently asked me to sign their applications to register with the Law Society of Ireland. I asked them if they were thinking of moving.

Read Blog Post

#Brexit: Further clarification on the rights of EU citizens living in the UK: https://bit.ly/2LY0QtA

18 June 2018

View Tweet

Blackberries, Baking and Brexit

11 July 2018

Read Blog Post

A change of course? Pondering the future of golf in Brexit Britain

29 March 2018 - As avid golfers focus their attention on the US Masters in Augusta Georgia next month, many at the 19th Hole will be pondering the impact of Brexit on their beloved game.

Read the blog

Post-Brexit language testing for EEA qualified healthcare professionals

22 March 2018 - The House of Commons Library published a Briefing Paper on 7 March 2018 outlining the language testing requirements imposed upon healthcare professionals who qualified outside of the UK.

Read Blog Post

Brexit & Horse Racing

5 March 2018 - The UK is home to a myriad of sports employing foreign nationals and receiving investments from overseas companies. Learn how Brexit will impact horse racing and all who are part of it.

Read Blog Post

Brexit & Motor Racing

21 March 2018 - The UK is home to a myriad of sports employing foreign nationals and receiving investments from overseas companies. Learn how Brexit will impact motor racing and all who are part of it.

Read Blog Post

UK-EU security cooperation post #Brexit - ringing the alarm bell! | Part II of a two-part guest blog by EU Criminal Law expert Dr Debbie Sayers | #CriminalLaw http://ow.ly/bO0b30jwHfa

17 April 2018

View Tweet

Kim provides the facts! #stayorgo

19 March 2018

View Tweet

Beyond #Brexit: new anti-money laundering regime agreed

10 July 2018 - No sooner are we one year into the new regime under the Money Laundering Regulations 2017 than a further EU instrument has been adopted.

Read Blog Post

What Brexit means for EU employees living in the UK and their families

27 June 2016

View on YouTube

Share insightLinkedIn Twitter Facebook Email to a friend Print

Email this page to a friend

We welcome views and opinions about the issues raised in this blog. Should you require specific advice in relation to personal circumstances, please use the form on the contact page.

Leave a comment

You may also be interested in:

Blog

GDPR for the UK: Brexit and international transfers of personal data

Alexander Torpey

Blog

GDPR and Brexit: the draft withdrawal agreement and data transfers from the EU

Andrew Solomon

Blog

Care homes take heed: if you have failed to pay the ICO data protection fee you could be breaking the law

Kathryn Sheridan
Close Load more

Let us take it from here.

+44 (0)20 7814 1200

enquiries@kingsleynapley.co.uk

Skip to content Home About Us Insights Services Contact Accessibility