As we head towards the end of the Brexit transition period (31 December 2020), many firms will have to assess their business procedures. One of the key ones to consider is data protection and the effect Brexit will have.
Whilst the General Data Protection Regulations (GDPR) will continue to provide the UK’s framework for data protection, the Government could review this at any time. Going forward it will be imperative to keep abreast of any data protection announcements.
For many accountancy practices, particularly those with only UK based clients, Brexit will have little effect on their data protection compliance requirements, providing they are currently complying with the GDPR. However, if you have clients or business contacts in Europe, or your clients do, then it will pay to be up to speed on the current guidance.
Guidance from the ICO
To assist with this, the Information Commissioner’s Office has put together a range of guides for ‘Data protection at the end of the transition period for small businesses and organisations.’
They have also produced specific guides for UK businesses who fall into one or more of the following categories:
• UK businesses and organisations who have no contacts or customers in Europe.
• UK businesses and organisations who send or receive data to or from Europe.
• UK businesses and organisations with a European presence or with European customers.
• UK businesses and organisations who send or receive data to or from countries outside Europe.
The Information Commissioner’s Office has also put together a handy FAQ document relating to Information rights at the end of the transition period.
Understanding and complying with data protection and Brexit will also be key as many firms continue to have staff working from home during the COVID-19 Pandemic. Accountancy firms must ensure that their GDPR procedures remain watertight, no matter where their staff are working during any future local or national lockdown periods which are enforced.
