Binding Corporate Rules

News & Analysis as of

The Privacy Shield: September 30, 2016, Deadline for Early Self-Certification Offers Compliance Opportunity and Risk

The European Commission recently determined that the Privacy Shield Framework is adequate to legitimize data transfers under EU law, providing a replacement for the Safe Harbor program. The Privacy Shield is designed to...more

The EU’s Data Transfer “Privacy Shield”—Full Body Armor or a Candle in the Wind?

With the August 1st start of the Privacy Shield, the European Commission’s new and long-awaited transatlantic data transfer agreement with the U.S., businesses that had previously relied on the invalidated Safe Harbor scheme...more

Unlocking the EU General Data Protection Regulation: A practical handbook on the EU's new data protection law: Chapter 13:...

Why does this topic matter to organisations? In today's world, it is increasingly important to be able to move data freely to wherever those data are needed. However, the transfer of personal data to recipients outside...more

“Battle-ready” Privacy Shield gets muted welcome from EU data protection authorities

On 26 July, the Article 29 Data Protection Working Party (WP29) released a statement outlining its opinion on the EU-U.S. Privacy Shield, which was adopted by the European Commission earlier this month. After praising the...more

Article 29 Working Party on the EU-US Privacy Shield: A Number of Concerns Remain But Let’s See How It Works

Article 29 Working Party on the EU-US Privacy Shield: The EU’s Article 29 Working Party analyzed the final version of the Privacy Shield and issued a statement on July 26, 2016. What does this mean?...more

Privacy Shield: The National Data Protection Authorities Hold Fire

The Article 29 Working Party (WP29) has released a brief updated statement on the final form of the Privacy Shield adequacy decision and supporting annexes. WP29 is an important advisory group made up of representatives of...more

A Side-By-Side Comparison of “Privacy Shield” and the Controller-Controller Model Clauses: The Easiest Way to Understand What...

The EU Data Protection Directive 95/46/EC (the “Directive”) creates the legal framework for the national data-protection laws in each EU member state. The Directive states that personal data may only be transferred to...more

Shield, Sword or Plough Ahead? Approval of New EU Privacy Shield Forces a Decision

When the European Court of Justice first invalidated the Safe Harbor we recommended here that, for most companies, staying the course by implementing general data security best practices was probably the right thing to do...more

Self-Certification Under EU-U.S. Privacy Shield to Commence from August 2016

Following the formal approval of the EU-U.S. Privacy Shield by the European Commission on 8 July 2016, the arrangement will come into force in the U.S. commencing 1 August 2016 and will provide a convenient framework to allow...more

U.S., EU Launch "Privacy Shield" Data Transfer Framework, Certification to Begin August 1

U.S. organizations that collect, receive, handle, or process EU citizens' personal data are generally subject to EU privacy and data protection laws. With the loss of the "Safe Harbor" data transfer framework in October...more

Adoption of Privacy Shield Gives U.S. Businesses Greater Clarity On Data Transfers From Europe

The European Commission (EC) announced that it has adopted the EU-US Privacy Shield (“Privacy Shield”) effective July 12, 2016, which replaces the US-EU Safe Harbor Framework (“Safe Harbor”). The adoption of Privacy Shield...more

Privacy Shield Adopted, But Uncertainty Remains

On July 12, 2016, the European Commission adopted the EU-US Privacy Shield, a framework designed to replace the invalidated Safe Harbor program. In theory, the Privacy Shield offers its adherents a relatively simple,...more

Privacy Shield Approved

On July 8, 2016, the Article 31 Committee, comprised of representatives of the European Union (EU) member states, voted to approve a revised Privacy Shield framework that is intended to replace the Safe Harbor framework...more

The EU-U.S. Privacy Shield Is Adopted and Available as of August 1, 2016

On July 12, 2016, the EU Commission and the U.S. Secretary of Commerce announced the adoption of the EU-U.S. Privacy Shield (Privacy Shield). This announcement follows today's adequacy decision by the College of EU...more

BREXIT – What does this mean for UK Data Protection law?

As the whole world now knows, the UK voted to leave the European Union (EU) in its historic referendum on 23rd June by a vote of 51.9 percent in favour of “leave” to 48.1 in favour of “remain”. This blog focusses on how that...more

Brexit: Potential Implications for Privacy

As a result of the June 23, 2016 historic referendum, the United Kingdom will be leaving the EU. The decision will have a profound effect on many areas, including the global economy, trade, immigration and, potentially, the...more

Just When You Thought it was Safe to Go Back in the Water: Brexit Creates Additional Uncertainty in Trans-Atlantic Privacy...

In October 2015, the European Court of Justice invalidated the US-EU Safe Harbor Program in the landmark Schrems v. Data Protection Commissioner decision. The Safe Harbor was a 15-year old program that had allowed American...more

German Data Protection Authority Issues Fines for Unlawful Cross-Atlantic Data Transfers

The Data Protection Authority of Hamburg, Germany has made good on its promise to audit cross-Atlantic data transfers in the wake of the October 2015 Safe Harbor decision. On June 6, the Hamburg DPA announced that it had...more

New threats to transatlantic data flows as Model Clauses come under fire

The transfer of personal data from the EU to the US is continuing to come under attack in the EU, with Model Clauses now in the regulatory crosshairs. Consequently, organisations that do business on both sides of the Atlantic...more

Data Transfer Without Safe Harbors

European privacy law is a bold new world for U.S. businesses doing business in Europe. An October Court of Justice ruling struck down the Safe Harbor arrangement which had governed E.U.-U.S. data transfer transactions for...more

The End of the “Safe Harbor” Rule for E.U./U.S. Data Transfer: How Can Companies Transfer Personal Data and Remain Compliant?

Directive 95/46/EC of 24 October 1995 - Articles 25 and 26 - The transfer of personal data to a third country is allowed: ..if the third country ensures an adequate level of protection; the Commission can...more

Europe Counts Down to the General Data Protection Regulation

Businesses have two years to comply with Europe’s new privacy regime. On 24 May 2016, after more than four years of debate, the General Data Protection Regulation (GDPR, or the Regulation) enters into force. The GDPR...more

A Tale of Shields & Swords or Are Data Transfers between the EU and the US legal once again?

The world changed on October 6, 2015; well, at least the world of data transfer between the European Union and the U.S. On that day, the European Court of Justice issued its “Schrems” judgment (case C-362/14) declaring the...more

How to Prepare for the General Data Protection Regulation (GDPR)

The EU General Data Protection Regulation (the “GDPR”) was adopted by the EU Parliament last April 14, 2016. The GDPR will replace the EU Data Protection Directive (95/46/EC), which was implemented more than 20 years ago....more

Privacy Shield Rejected, GDPR Approved - What This Means to Automotive Organizations

The European Union Article 29 Working Party (Article 29) issued an opinion on the proposed EU-U.S. Privacy Shield framework agreement (Privacy Shield) last month, stating that although the Privacy Shield was a “great step...more

184 Results
View per page
Page: of 8
JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.