EU safe harbor update

Robinson+Cole Data Privacy + Security Insider

A lot has happened since the European Court of Justice’s declaration that the EU-US safe harbor framework is invalid (see related post).

First, the Article 29 Working Party, an organization comprised of representatives from each data protection authority in the EU, issued a statement late last week indicating that since transfers relying on safe harbor are now unlawful, companies transferring EU citizens’ data to the U.S. may use the EU Standard Contractual Clauses or Model Clauses and Binding Corporate Rules on an interim basis until negotiations over a new safe harbor framework are complete. Further, it declared that if a new framework cannot be agreed upon by the end of January, 2016, it will exercise the powers vested in them to investigate complaints and enforce violations.

Second, the Irish High Court asked the country’s Data Protection Commissioner to investigate Facebook to determine whether the personal data of EU Facebook users was properly protected when transferring it to the U.S.

Third, Israel’s data protection authority this week declared “Pursuant to the European decision, it is no longer permissible to rely on the safe harbor as a basis for transfers of personal data from Israel to the U.S.” It further announced that it, “will publish information and additional clarifications if necessary.”

And finally, on Tuesday, the U.S. House of Representatives passed the Judicial Redress Act, which, if enacted, would give citizens of foreign countries covered under data sharing agreements with the U.S. to sue the U.S. government for privacy violations if their information is shared with the U.S. for law enforcement purposes. This was one of the reasons cited by the European Court of Justice in striking down the safe harbor framework. It brings the U.S. in line with its allies, who allow U.S. citizens redress for privacy violations in other countries.

We anticipate that there will continue to be a flurry of activity around the safe harbor framework and we will continue to update you on developments as they occur.

[View source.]

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Robinson+Cole Data Privacy + Security Insider | Attorney Advertising

Written by:

Robinson+Cole Data Privacy + Security Insider

Robinson+Cole Data Privacy + Security Insider on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide

This website uses cookies to improve user experience, track anonymous site usage, store authorization tokens and permit sharing on social media networks. By continuing to browse this website you accept the use of cookies. Click here to read more about how we use cookies.