29 April 2021
As of the 1st January 2021 we are now obliged to follow the U.K GDPR (which encompasses the E.U. GDPR) as well as the Data Protection Act 2018, the Freedom of Information Act 2000 and the Privacy and Electronic Communications (EC Directive) Regulations 2003 (PECR) across all our activities.
Most of these changes reflect data that is stored and received from outside the E.U. and can be found in the Confidential and Data Protection Policy, Appendix 2 “Data Flow Analysis” and Appendix 9 “Our Security Systems”.
As part of the new trade deal, the EU has agreed to delay transfer restrictions for at least four months. During this period the European Data Protection Board will consider the U.K.’s position in relation to the E.U. data protection protocols. Once a decision has been made we will inform you of any further updates that may be required to our policy to reflect any changes.