> Realistically a B2B contract should draw in as first party terms that all the relevant protections will be provided, confirm in compliance with GDPR (which UK has in law) if the UK removes it the protections still apply.
The moment UK makes a legal change that overrides those protections, you're left with worthless words on paper. And the point of GDPR status as "EU Regulation" is that it's not exactly feasible for EU members to override it like that.
No, I don't agree with that, they're first party terms so the only law that would impact it is if the UK said "you MUST NOT protect users privacy or you'll go to jail" that won't happen. They would only revoke default protection, which doesn't matter as the protection is expressly contractual.
Passing, revoking or changing a UK law is not an instant thing either, trust me. So the only difference in those scenarios are that Portugal leaving the EU would take a bit longer than the UK removing a law from the statutes? So essentially there's no difference whatsoever?
So it's not acceptable for a EU company to store any customer data with a US company? They very literally all do. We are also not the US, and are I'm sure happy to arrange a sensible agreement. Regardless I still don't think this is the big issue that some europeans make it out to be, back in the real world I don't think we've lost any customers due to brexit. I think the friction in gaining new ones from the EU is purely psychological "but brexit makes that hard" or "but you're not in europe, /yes we are/ oh you know what I mean".
The moment UK makes a legal change that overrides those protections, you're left with worthless words on paper. And the point of GDPR status as "EU Regulation" is that it's not exactly feasible for EU members to override it like that.
And leaving EU isn't instant thing.