Brexit, GDPR and FUD
I got the best advice about brexit from a Data Protection Specialist from one of our local law firms back in October 2015
She set out 5 options for what the UKs relationship with the EU will look like after brexit and i still think not much has been decided either way.
The basic options are Remain, EEA/EFTA, Bilatteral agreements, Customs Agreement, WTO rules.
Remain means we are subject to all regs, but have a seat at the table to decide them
EEA/EFTA, like Norway/Iceland means we have to apply most rules, dont have to pay in as much, get the free-trade and free-movement, but dont get a seat at the table
Bilateral agreements, Like Switzerland - takes forever to set up, will probally end up with us haing to follow most regulations, gives us custom agreements for each sector, no seat at the table either.
Customs Agreement like turkey - Allows access to free trade, sets external tariffs, covers most goods, but no services
WTO Rules - no Regs, no free-trade, no support, tarrifs and border checks increased cost of goods http://stat.wto.org/TariffProfiles/E28_e.htm
During the referendum campaign, the leave campaign talked up the norway/Iceland senario, but it looks increasingly likely that they are going for a swiss senario, but the agreements woont be in place in time, so we will end up with the WTO cliff edge.
but untill we actualy have some information, its all FUD.
Oh and BTW Data Protection equivalance is not a foregone conclusion, the EU working party for data protection (WP29) have three large grounds they dont think our current regieme is inline with the old directive (that the 1998 dpa is based on) starting with the Five Eyes agreement and the snoopers charter.