The European Commission published on February 29 the legal instruments needed to put in place the “EU-U.S. Privacy Shield” (Privacy Shield) for transfers of personal information from Europe to the United States. Before the Privacy Shield becomes operational, it must be reviewed by both the Article 29 Working Party of national DPAs and a panel of EU Member State representatives, and it must then be formally approved by the Commission. In the meantime, organizations may want to evaluate whether the Privacy Shield represents a viable mechanism to legitimize their transfers of data from the European Union. This summary highlights key features and requirements of the Privacy Shield.
Please see full publication below for more information.