How to keep personal data flowing freely between the UK, Jersey, Guernsey and the Isle of Man?

13 May 2021

Webinar

Overview

This session will explain the future for data privacy law relationships between the UK, Jersey, Guernsey, the Isle of Man and the EU

The United Kingdom has left the European Union. Jersey, Guernsey and the Isle of Man were never in the EU but have adequacy declarations from the EU. The UK has a provisional adequacy finding. How do these separate data protection laws work together now, and how will they impact the flow of personal data between them in the future?

Speakers

  • Joe Jones, Head of Data Adequacy, Department for Digital, Culture, Media & Sport (DCMS), UK
  • Callie Loveridge, Head of Data Protection, States of Guernsey
  • Iain McDonald, Isle of Man Information Commissioner
  • Stephanie Peat, Head of Digital Economy, Government of Jersey

Chair: Valerie Taylor, Consultant, Privacy Laws & Business

This event qualifies for 1 CPE Credit

Programme & Registration

Date & Time

Thursday 13 May 2021 - 1 hour session, including time for questions

Starts: 14.00 UK, 15.00 CET

Programme

Importance of data flows

  • Relationships between these jurisdictions and to everyday life, such as law enforcement, health and cloud computing
  • Variations across Jersey, Guernsey and the Isle of Man
  • Small jurisdictions and how they fit into their wider digital economy ambitions and priorities

How personal data can flow

  • Current legal bases for data transfers to and from the Crown dependencies
  • The Islands' legislative process to allow data to flow to UK
  • An update on the EU's ratification of UK decisions
  • The UK perspective - the new independent process for adequacy, which will be used to review the adequacy arrangements
  • The experience of the islands as EU adequate jurisdictions and some of the practical implications

Recommendations to help keep personal data flowing

  • Compliance requirements and obligations which come with the opportunities of data flows
  • Need for controllers and processors to comply with the GDPR, limiting data flows to what is necessary for their lawful purposes and ensuring that appropriate security measures are in place
  • The impact of Schrems II decision of the Court of Justice of the European Union
  • Challenges and opportunities for the islands and the role and impact of new technologies