Parliamentary Committees and Public Enquiries
Barrier to Trade and Security if Data Transfers are hindered after Brexit
The Government should pursue full regulatory equivalence with the EU with respect to data protection in order to ensure unhindered data flows between the UK and EU post-Brexit, offer stability and certainty for businesses and maintain police and security cooperation, says the EU Home Affairs Sub-Committee in a report published yesterday.
- Report: Brexit: the EU data protection package (HTML)
- Report: Brexit: the EU data protection package (PDF)
- Scrutiny Work: Brexit: the EU data protection package
- EU Home Affairs Sub-Committee
Maintaining unhindered and uninterrupted data flows between the UK and EU after Brexit is an important aim, as any arrangement that results in greater friction could present a non-tariff trade barrier that puts the UK at a competitive disadvantage and hinders police and security cooperation. Although the Government has stated that they "will seek to maintain the stability of data transfers between the EU, Member States and the UK", little detail has so far been offered on how the Government plans to deliver this outcome.
In its report, by looking at four elements of the EU's data protection package the Committee examines the options available to the Government for securing uninterrupted data flows between the UK and EU after the UK leaves the EU. These elements are the General Data Protection Regulation (GDPR), the Police and Criminal Justice Directive (PCJ), the EU-US Privacy Shield and the EU-US Umbrella Agreement.
"The volume of data stored electronically and moving across borders has grown hugely over the last 20 years. Between 2005 and 2012 alone, internet traffic across borders increased 18-fold. The maintenance of unhindered data flows is therefore crucial, both for business and for effective police cooperation.
"The Committee was concerned by the lack of detail on how the Government plans to maintain unhindered data flows post-Brexit. It was concerned, too, by the risk that EU and UK data protection rules could diverge over time when the UK has left the EU. To avoid this, the Committee urges the Government to secure a continuing role for the Information Commissioner’s Office on the European Data Protection Board".
- There was consensus among our witnesses that the most effective way to achieve unhindered flows of data would be to secure adequacy decisions from the European Commission under Article 45 of the General Data Protection Regulation and Article 36 of the Police and Criminal Justice Directive, thereby confirming that the UK's data protection rules would offer an equivalent standard of protection to that available within the EU.
- EU adequacy decisions can only be taken in respect of third countries – i.e. countries that are not EU Member States – and there will therefore be legal impediments to having such decisions in place at the moment of exit. If there is no transitional arrangement on data protection post-Brexit, this could put at risk the Government's objective of securing uninterrupted flows of data, thereby creating a cliff-edge.
- Without a transitional arrangement, the lack of tried and tested fall-back options for data-sharing in the area of law enforcement would raise concerns about the UK's ability to maintain deep police and security cooperation with the EU and its Member States in the immediate aftermath of Brexit.
- Even if the UK's data protection rules were aligned with the EU regime to the maximum extent possible at the point of Brexit, there remains the prospect that over time, the EU would amend or update its rules. Maintaining unhindered data flows with the EU post-Brexit could therefore require the UK to continue to align domestic data protection rules with EU rules that it no longer participates in setting.
- It is imperative that the Government consider how best to replace those structures and platforms that have allowed it to influence EU rules on data protection and retention. It should start by seeking to secure a continuing role for the Information Commissioner's Office on the European Data Protection Board.
Latest News from
Parliamentary Committees and Public Enquiries
Government response to Operation Sophia: a failed mission18/09/2017 09:25:00
The EU External Affairs Sub-Committee has received a response from Sir Alan Duncan MP, Minister for Europe and the Americas, Foreign and Commonwealth Office, to its report, Operation Sophia: a failed mission, which was published on 12 July 2017.
Space Industry Bill scrutinised by Peers08/09/2017 13:40:00
The Constitution Committee today publishes a report on the Space Industry Bill [HL] which establishes a new regulatory framework for UK based spaceflight activities.
Brexit fundamentally challenges constitutional balance between Parliament and Government08/09/2017 09:25:00
The Constitution Committee yesterday called for the Government to act on the Committee's criticism of the "unprecedented" transfer of powers from Parliament to Government, proposed in the European Union (Withdrawal) Bill.
Lords debate impact of Brexit on UK-Irish relations01/09/2017 14:25:00
On Tuesday 5 September, the House of Lords debates the EU Committee's report on Brexit: UK-Irish relations.