The Transatlantic Debate | The 2nd Annual Data Privacy Conference USA

EDPB Wants Schrems II Compliance Now, but Clearer Guidance is Months Away

The European Data Protection Board (“EDPB”) plans to release further guidance in the coming months on specific steps that companies can take to export personal data from the European Economic Area to ...
Another Privacy Shield Bites the Dust

Another Privacy Shield Bites the Dust

While not outright eliminating the Swiss-U.S. Privacy Shield, the Swiss Data Protection Authority, the Federal Data Protection and Information Commissioner (FDPIC), announced in a position paper on September 8, 2020 that he no longer ...
Supplementing SCCs to Solve Surveillance Shortfalls

Supplementing SCCs to Solve Surveillance Shortfalls

This article was originally published in the IAPP Daily Dashboard on August 19, 2020. By invalidating the EU-U.S. Privacy Shield but not rejecting wholesale the use of standard contractual clauses to transfer ...
Amazon Echo Vulnerability Fixed, Privacy Shield, Capital One Data Breach Update

Amazon Echo Exploit, Privacy Shield, Capital One Data Breach Update

In episode 134 for August 17th 2020: Details on new critical vulnerabilities found in Amazon Echo devices, what the end of the Privacy Shield framework means EU citizens personal data, and new ...
Privacy Shield

Privacy Shield Dies, SCCs Survive (With a Catch): CJEU

Today the Court of Justice of the European Union (“CJEU”) ruled that: The EU-U.S. Privacy Shield framework (“Privacy Shield”) is no longer a valid mechanism for exportation of personal data from the ...
COVID-19

Why U.S. Software Companies Don’t Have to Protect Our Data

Flaws such as the CLOUD Act’s ability to undermine the Privacy Shield mean our data can be sent to U.S. authorities and companies Since COVID-19, millions of people have been working from ...
Security Boulevard

Is the End of the EU-US Privacy Shield in Sight?

| | Off Topic, Privacy Shield
European Union data protection law restricts the transfer of EU-origin personal data to countries outside the European Economic Area unless there is a mechanism in place to ensure an adequate level of ...