GDPR and the implications of storing EU citizens' data
Where is your data being stored? The question of where data was physically stored used to be straightforward. But in the last 5 years, things have become more complicated.
As we will outline in this paper, for the majority of companies in the UK, where their data was being stored didn’t matter too much. If it wasn’t on a computer in their office, it was likely in a data centre in the UK, the US or Europe.
None of those options was, or is, a problem, but as the Article 50 deadline looms (30th March 2019) that situation may change. Most companies in the UK take the view that because GDPR is coming into effect before we leave the EU, we will be 100% compliant post-Brexit.
But compliance with GDPR does not automatically entitle a country to store, process and transfer EU citizen data. We’ll look at that more closely later, but first to understand where we are now, we need to look at where we’ve come from. If you’re familiar with the history of data storage in the past 30 years you can skip straight to page 5 of our whitepaper, downloadable below.