Trends

The EU-US Privacy Shield unveiled – full text available

The EU-US Privacy Shield unveiled – full text available

The EU-US Privacy Shield unveiled – full text available

29.02.2016 EU law

As expected, the Commission has today published the documents that will constitute the EU-US Privacy Shield.

This framework of rules that U.S. companies will have to abide by will consist of (i) the “Privacy Principles”, issued by the U.S. Department of Commerce; and (ii) official representations and commitments by the U.S. Government. Further, the Commission has also published a draft “adequacy decision”, pursuant to which data flows to the U.S. generated by organisations included in the “Privacy Shield List” – and  thereby committing to comply with the principles of the EU-US Privacy Shield – will be deemed to meet the “adequacy test” under European law.

However, those companies can be sanctioned and even excluded from such list if they do not comply with their commitments. The focus of the Privacy Shield is indeed placed on trust and effective enforcement of EU citizen’s right to privacy. The new framework also imposes clear safeguards and transparency obligations on U.S. government access. Vice-President Ansip declared: “Trust is a must, it is what will drive our digital future”.

The draft adequacy decision (on which the WP29 will soon give its opinion) can be found here.

 

Team

Related news

20.09.2022 EU law
Launch of Metaverse blog series

Articles - Stibbe launches a new blog series focusing on the legal challenges of the Metaverse. In our upcoming blog posts, we will discuss the legal challenges of NFTs, crypto-assets, Metaverse platforms, crypto exchanges, DAO, and many more.

Read more

28.07.2022 NL law
Zuiver commercieel belang ook gerechtvaardigd belang: Raad van State laat zich er niet over uit

Short Reads - Op 27 juli 2022 heeft de Raad van State bevestigd dat de Autoriteit Persoonsgegevens onterecht een boete van € 575.000 aan VoetbalTV heeft opgelegd. De hoop bestond dat de Afdeling antwoord zou geven op de vraag of de AP terecht of onterecht meent dat een zuiver commercieel belang géén gerechtvaardigd belang kan zijn in de zin van de Algemene Verordening Gegevensbescherming. Het antwoord op deze vraag blijft echter uit.  

Read more

28.07.2022 NL law
Purely commercial interest also a legitimate interest? Council of State leaves the question unanswered.

Short Reads - On 27 July 2022, the Council of State confirmed that the Dutch Data Protection Authority wrongly imposed a €575,000 fine on VoetbalTV. But the Council did not answer the question whether the AP rightly or wrongly believes that a purely commercial interest cannot be a legitimate interest within the meaning of the General Data Protection Regulation.

Read more