The Information Commissioner's Office (ICO) has issued new guidance on compliance with the General Data Protection Regulation (GDPR) for organisations that transfer data out of the UK.
Because the GDPR protects only data within the EU, it restricts transfers of data outside the EU unless there are sufficient protections.
Details can be found at on the ICO's website.