France’s data protection authority, the CNIL, released a series of frequently asked questions on the steps organizations should take in the event of a no-deal Brexit, according to a post from Hunton Andrews Kurth's Privacy & Information Security Law Blog. The agency recommends organizations to have data transfer mechanisms in place when Brexit goes into effect March 30. The CNIL notes data transfers could occur in the absence of proper safeguards, such as standard contractual clauses and binding corporate rules, via exemptions “on the basis of derogations” found in Article 49 of the EU General Data Protection Regulation. Editor's Note: The IAPP Data Protection Intensive: UK will feature a keynote panel on Brexit.
Full Story
Comments
If you want to comment on this post, you need to login.