Skip to Main Content ⏎.
Your web browser is out of date. Update your browser for more security, speed and the best experience on this site.
Protect your assets

What is the new EU data protection programme?

The new EU programme involves some changes to how you should protect your business’ data. We know adapting to new data protection regulations might seem challenging but, with our support, we’ll help keep your business’s data secure.

Request a call-back from the Growth Hub team

What you need to know

Personal data is any information that can be used to identify a living person, including names, delivery information, IP addresses, or HR data such as payroll details. Your business is likely to use this information in its day-to-day operations. For example, a UK business may receive customer names and addresses from an EU business in order to provide goods or services.

For the first time, the EU has agreed regulations concerning data in a free trade agreement. These regulations will help facilitate cross-border data flow, by removing requirements to store or process data in a specific location. This means British businesses will avoid the high costs associated with this.

The agreement confirms rigorous data protection commitments by both the UK and the EU. This protects consumers, promotes trust in the digital economy, and continues to uphold the UK’s high data protection standards.

If your business stores, shares or uses data (both personal and other) in the EU, or holds data relating to EU nationals, you need to follow the new data protection regulations.

  1. If you hold a .eu domain, use the following webpage to check if you need to replace it
  2. If you provide online services to countries in the EU, check if rules in those countries now apply
  3. If your business is a Digital Service Provider to the EU/European Economic Area, make sure you comply with the Network and Information Systems Regulations and associated EU Directive.

GDPR remains unaffected. It has been retained in UK law and will continue to operate alongside the Data Protection Act 2018, with technical amendments to ensure it can function in UK law. The Information Commissioner remains the UK’s independent supervisory authority on data protection.

Rules relating to online activities in the EU may now apply to your online service(s). You should consider whether the online services you provide are currently in scope and ensure that you comply with the relevant requirements in each EU country you operate in.

The rules that you may need to follow cover legal requirements that apply to ‘information society services’. This may include rules relating to online information, advertising, shopping, or contracting.

Be reassured that trading across borders shouldn’t become more complex or more expensive. Digital contracts are also supported; this saves on paper copies and helps businesses to streamline their international trade processes.

1-2-1 support

For personalised guidance about the implications of the data protection changes for your business, request a call-back using our online form.