Stan Sater


A Look a the GDPR Three Years In

The General Data Protection Regulation (the “GDPR”), promulgated by the European Commission, was adopted in April 2016 and became effective in May 2018. Last year, we provided an update discussing the second-year benefits for companies and trends for the US following the enactment of the GDPR.

This year, we will take a look at current EU-US compliance issues, and US regulations following the adoption of GDPR.

Post-Brexit: International Data Transfers and the GDPR

As sovereign trade deals hang in the balance amid ongoing Brexit talks, Software-as-a-Service (“SaaS”) businesses are preparing for the end of the Brexit transition period regarding the international transfer of personal data. The transition period allows the UK to remain in both the EU customs union and single market otherwise allowing it to continue pre-Brexit until December 31, 2020 when the transition period ends, and the UK is no longer a part of the EU. When the UK ceases to be a part of the EU, international data transfer anxiety will start to kick in and be reflected in ordinary SaaS agreements.