Stibbe is a long standing partner of the International Computers, Privacy and Data Protection Conference (CPDP) which takes place in Brussels between 24 and 26 January 2018.
The theme of this year’s edition is “The Internet of Bodies”.
Carol Evrard, associate in our Data Protection team, participates in a panel session on the implementation of EU-US Privacy Shield Agreement.
The EU-US Privacy Shield agreement is a self-certifying mechanism enabling transfers of personal data from the EU to the US under the adequacy principle. However, certain US companies and industries are outside its scope and certain companies still certify under the old Safe Harbor agreement, which does not apply any more. Before the adequacy decision enters into force, organisations need to prepare for it, taking into account different requirements differ based on whether the US company functions as a data controller or a data processor. Additionally, the Privacy Shield – unlike the previous Safe Harbor – gives individuals the option to exercise their data protection rights. The panel will address the steps organisations and individuals should take to exercise their rights, and to enable their exercise, respectively.
- How to perform a lawful cross-Atlantic transfer to a US-based controller?
- Which additional content should processor terms with a US processor contain?
- How to enable the exercise of individual rights under the Privacy Shield?
Click here for more information on the programme.