ComplyGDPR
  • Home
  • Services
    • Staff Training
    • GDPR Self-Audit
    • GDPR Support
    • GDPR Toolkit
    • EU Representative
  • About GDPR
  • Our Team
  • Contact
  • Articles
  • Client Portal

Revised Contractual Clauses for UK GDPR

REVISED CONTRACTUAL CLAUSES FOR UK GDPR

For the time being, the ICO confirms it is still OK to use the EU Standard Contractual Clauses (SCCs) for existing or new international data transfers from the UK.

However, they add guidance that certain tweaks are allowed to tailor them specifically for UK GDPR (which has been in force in the UK since 31st December 2020). Other changes to the SCCs are not allowed and may make them invalid.

Accordingly, new versions that include suggested UK changes with guidance have been published by the ICO – one for controller to processor and one for controller to controller. UK companies could consider adopting these to safeguard transfers of personal data outside the UK and EEA. However, the ICO also says it is working towards publishing new updated sets of UK SCCs sometime during 2021. (The EU is also getting close to adopting its own new EU SCCs.)

Tips: Clauses for international data sharing

  • To minimise changes, where your UK business has existing SCCs with a client or other parties outside the EEA, consider continuing to rely on the current EU SCCs for the time being. For new transfer arrangements, consider adopting the UK GDPR versions instead. New UK SCCs will replace them in due course, but the ICO have assured they will give plenty of notice.
  • If you have offices in the EU, they would continue to use EU SCCs only.

How can we help?

  • For helpline subscribers, a ready-to-use format of the ICO’s UK GDPR SCCs is available on our client portal.
  • Ask us for further help understanding when and how to use SCCs when you share personal data with clients, suppliers or your group companies.
  • Next Regulator Enforcement Action
  • Previous Are Your Legitimate Interests Legit?

Newsletter Articles

  • Regulatro Focus for 2021
  • Regulator Enforcement Action
  • Revised Contractual Clauses for UK GDPR
  • Are Your Legitimate Interests Legit?
  • Lingering Post-Brexit Matters

Previous Newsletters

  • June21
  • Updates

Contact Us

  • info@complygdpr.com
  • Mon-Fri 09:30 - 17:00
  • +44 (0)7853 626969
  • Follow us on LinkedIn
  • Twitter

GDPR Leaders Refresher

Next Refresher Workshop For GDPR Leaders
in May 2023

Help your business stay on top of current GDPR obligations & risks.

Contact us to book your place at our next online event.

More about our services...

Recent Posts

  • GDPR News & Tips – Autumn/Winter February 16, 2023
  • What is “GDPR Committed”? January 19, 2023
  • GDPR news & tips – Spring 2022 May 27, 2022

Site

  • Home
  • Services
  • Our Team
  • About GDPR
  • Contact
  • Articles
  • Client Portal
    • Online Modular Implementation Workshop
ComplyGDPR | Privacy Policy | Cookie Policy