background preloader

Privacy Shield - the new agreement EU-US

Facebook Twitter

Privacy Shield 2

'Privacy Shield' to replace Safe Harbor. Privacy shield rejected. Wp237_en. EU-US Privacy Shield gains momentum - Privacy Laws & Business. Some 200 US companies have now been certified to the EU-US Privacy Shield, Ted Dean, Deputy Assistant Secretary for Services at the US Department of Commerce said today at a privacy conference in Germany.

EU-US Privacy Shield gains momentum - Privacy Laws & Business

Another 300 companies are being reviewed, and around 400 companies have submitted some information. Companies such as Google, Salesforce and Oracle are now amongst those that have been certified. Companies that have been accepted must renew annually and pay the application fee. The list of certified companies is now available at The grace period is coming to an end on 30 September. Subscribe to Privacy Laws & Business International Report for a more detailed analysis of the Privacy Shield and how it works for companies. Privacy Shield deal lets US tech firms transfer European customers' data again. Governments across the European Union have finally given the green light to a new deal on how consumer data must be transferred with the United States, ending months of delay caused by concern over US surveillance.

Privacy Shield deal lets US tech firms transfer European customers' data again

Privacy Shield, the new commercial data transfer pact, was provisionally agreed by the EU and the US in February and will come into effect on Tuesday. The EU’s top court had struck down the previous data transfer agreement, Safe Harbour, on concerns about intrusive US surveillance – leaving companies, including Google, Facebook and MasterCard, in legal limbo. Representatives of European Union member states mostly voted in favour of the EU-US Privacy Shield, but there were abstentions from Austria, Slovenia, Bulgaria and Croatia, sources said. Austria and Slovenia have voiced concerns that the pact does not go far enough to secure their citizens’ privacy. TechUK, which represents 900 firms in the UK, described Privacy Shield as a “restoring a stable legal footing”. Court decisions erode Privacy Shield support. May 04, 2016 Privacy Shield could face new challenges The long-besieged Privacy Shield agreement proposed by US and European officials faces a new round of challenges following recent decisions by the US Foreign Surveillance Intelligence Court (FSIC) and the Supreme Court.

Court decisions erode Privacy Shield support

A committee of the US Supreme Court made changes last week to Rule 41 of the Federal Rules of Criminal Procedure, allowing judges to issue warrants outside their districts. The change would grant expansive powers to law enforcement agencies to hack and access information on computers if device location information “has been concealed through technological means". The change would also remove limitations on law enforcement agencies in investigations of Computer Fraud and Abuse Act (CFAA) violations if “the media are protected computers that have been damaged without authorisation and are located in five or more districts”.

“Make no mistake: the Rule 41 proposal implicates people well beyond US borders. #PrivacyShield - Le "oui, mais" des autorités européennes des données personnelles. Data Protection Authorities’ Opinion Paves Way For Adoption Of EU-US Privacy Shield. Press_release_shield_en. European Commission - Streaming Service. U.S. Multinationals Have a Huge Privacy Problem in Europe. Europe’s privacy regulators have urged EU lawmakers to resume negotiations with the U.S. administration over the “Privacy Shield” data-sharing deal, saying the agreement announced in February isn’t good enough.

U.S. Multinationals Have a Huge Privacy Problem in Europe

U.S. multinationals therefore remain in legal limbo when it comes to importing the personal data of Europeans, such as emails, files, and even names and birth dates. That applies to corporations wanting to process the information of employees in Europe, as well as web firms providing cloud services to European customers. There used to be a simple way for companies to import this data without the threat of legal action—an agreement called Safe Harbor, which let firms self-certify that they abide by EU-strength privacy rules.

However, that deal got nixed by Europe’s top court because firms couldn’t guarantee the data wouldn’t be sucked up by U.S. intelligence agencies, and because Europeans didn’t have adequate ways in which to complain about their data being misused. PS_Feedback. TACD.org. Today, the European Data Protection Authorities (DPAs) sent the so-called EU-US Privacy Shield back to the drawing board.

TACD.org

Following a thorough assessment of the proposed new framework, the DPAs have come to the conclusion that, despite providing some improvements over the previous ‘Safe Harbour’ agreement, the proposed Privacy Shield as it stands raises substantial concerns and therefore does not guarantee an adequate level of protection for consumers’ privacy. The concerns raised by the DPAs affect both the commercial and the national security aspects of the agreement and had already been highlighted by many privacy advocates and NGOs on both sides of the Atlantic, including TACD in its most recent policy position.

Datenschutzreform: Ein großer Schritt für Grundrechte und Verbraucherschutz » GrünDigital. Das Europäische Parlament hat heute die Datenschutzreform angenommen.

Datenschutzreform: Ein großer Schritt für Grundrechte und Verbraucherschutz » GrünDigital

Das ist der letzte Schritt der bahnbrechenden Reform des EU-Datenschutzes. Das Gesetz schafft erstmalig einen EU-Datenschutz auf höchstem Niveau und ersetzt den ausgedienten Flickenteppich 28 unterschiedlicher Datenschutzregelungen in den Mitgliedstaaten. Das ist ein großer Schritt für die Grundrechte, für den Verbraucherschutz und einen fairen Wettbewerb. Accord « Privacy shield » : les CNIL européennes saluent un « progrès » mais réclament des améliorations. LE MONDE | • Mis à jour le | Par Martin Untersinger.

Accord « Privacy shield » : les CNIL européennes saluent un « progrès » mais réclament des améliorations

Mixed response to call for more work on Privacy Shield. The call by the Article 29 Working Party of European privacy regulators for more work on the EU-US Privacy Shield pact has been met with mixed response.

Mixed response to call for more work on Privacy Shield

Instead of approving the proposed pact to replace the now-defunct Safe Harbour agreement to ensure privacy protections for trans-Atlantic data transfers, the group called on the US and European Commission (EC) to revise and clarify several points. The A29WP said it was still concerned about the possible “massive and indiscriminate” bulk collection of EU citizens’ data by US authorities, and called for further guarantees about the powers US officials would have to handle complaints from EU citizens. “We don’t have enough security or guarantees in the status of the ombudsperson and in their effective powers to be sure this is really an independent authority,” said Isabelle Falque-Pierrotin, chair of the A29WG. Uncertainty for businesses. European enforcers not sold on ‘privacy shield’ In a stuffy room in a European Commission building near Brussels’ Place Jourdan, the EU’s data cops will meet this week to decide the fate of an agreement to enable companies to move data across the Atlantic.

European enforcers not sold on ‘privacy shield’

If the authorities decide the “privacy shield” pact doesn’t offer Europeans adequate protection, billions of euros of lost business will be at stake because data transfers could grind to a halt. Although the outcome is not binding, it would be difficult for the Commission to ignore. The privacy shield was created by the Commission and U.S. negotiators in February after its 15-year-old predecessor known as “safe harbor” was struck down by the European Court of Justice in October because it did not sufficiently protect Europeans’ data.

Before the ECJ ruling, more than 4,000 U.S. companies relied on safe harbor for legal cover. Companies self-certified that they offered Europeans the same level of data protection in the U.S. as they got at home. DATA TRANSFERS, SAFE HARBOUR AND THE EU/US PRIVACY SHIELD — Risk & Compliance. Last October’s ground breaking decision from the Court of Justice of the European Union (ECJ) on the US Safe Harbour has sent ripples through the transatlantic business community.

DATA TRANSFERS, SAFE HARBOUR AND THE EU/US PRIVACY SHIELD — Risk & Compliance

The judgement not only affects US businesses with subsidiaries in Europe, but IT-related service providers (particularly online services) with European customers. These businesses can no longer rely on the US Safe Harbour to transfer personal information relating to their employees, customers and suppliers from Europe to the US. This article explains the implications of the decision, how these affect organisations and how businesses can address the change. Question: When is a Shield not a Shield? Answer: When it still looks a 'wee' bit like Safe Harbor!

Privacy Shield - Le "oui, mais" des autorités européennes des données personnelles - ZDNet. Après l'invalidation du Safe Harbor par la Cour de Justice de l'UE, Commission européenne et autorités américaines ont dû intensifier les négociations pour définir un dispositif de remplacement pour encadrer les transferts de données personnelles hors de l'Europe.

La solution proposée, c'est le "Privacy Shield". Mais celui-ci, qui n'est pas à ce jour encore finalisé, répond-il à toutes les attentes et prend-il pleinement en compte l'arrêt de la CUJE ? L'avis rendu par l'Article 29 - réunissant les différentes autorités de protection des données personnelles - est tout en nuances. Log In. EU watchdogs demand revisions to Safe Harbour replacement. A panel of EU privacy watchdogs has demanded changes to a pact meant to govern cross-Atlantic data transfers. WP29 refuse to endorse Privacy Shield scheme. As anticipated the Article 29 Working Party (often known as WP29), a group of the EU’s data protection regulators met in Brussels today to discuss the European Commission’s Privacy Shield scheme, the proposed replacement for Safe Harbor. As we had anticipated in our earlier alerts WP29 decided that in their view Privacy Shield does not offer adequate protection. Whilst the decision is not binding on the Commission it will be hard to ignore if Privacy Shield is to be successful, especially since enforcement is still in the hands of the data regulators who sat around the table at WP29 and not in the hands of the Commission.

WP29’s position is not a surprise, especially given the rumours coming out of Germany. As we mentioned previously some German data protection authorities have had a long-held objection to Safe Harbor and they have been the most aggressive in enforcement since Safe Harbor died (for more on this see our alert here). Amongst WP29’s criticisms are: Office: +44 (0)207 075 1784. Global Data Protection News: WP29 Privacy Shield Update.

Privacy Shield Revealed, What Changes? Privacy Shield Revealed, What Changes? Giulio Coraggio on 10 March, 2016 - 10:10 am in data protection, privacy The publication of the details of the Privacy Shield that will replace the Safe Habor for the transfer of personal data to the United States sets a higher bar of compliance. TRANSATLANTIC COALITION OF CIVIL SOCIETY GROUPS: PRIVACY SHIELD IS NOT ENOUGH, MUST RETURN TO NEGOTIATING TABLES. The Privacy Shield, announced at the beginning of February and published a month later, is an arrangement between the European Union and the United States intended to allow companies to transfer data on E.U. citizens to the U.S.

Under European law, companies are only allowed to transfer data to a country that guarantees adequate levels of data protection. The Privacy Shield is intended to provide rules for that protection. The Privacy Shield replaces the "Safe Harbor" arrangement, which was invalidated by the Court of Justice of the European Union ("CJEU") late last year. The Safe Harbor had been broadly criticized for its system of self-certification, lack of transparency and oversight, and insufficient privacy protections.

European Commission announces some detail on Privacy Shield scheme to replace Safe Harbor. Almost a month after announcing that a deal was done between the EU and the US in order to protect European personal data, the European Commission have finally announced the details of the replacement for Safe Harbor: Privacy Shield. We’re still working our way through all of the documentation, but thought we’d share our initial thoughts. Compliant? The FAQs issued by the Commission state that “the EU-U.S. Privacy Shield reflects the requirements set out by the European Court of Justice in its ruling on 6 October 2015, which declared the old Safe Harbour framework invalid”. This is a fundamental issue. And there are definitely some who believe it doesn’t measure up.

PS_Feedback. Apple's FBI Clash Risks Piercing Trust in EU Privacy Shield. Apple Inc.’s fight with the U.S. government over whether it can be forced to help unlock an iPhone has spilled across borders, threatening to delay a trans-Atlantic pact protecting European data from American eyes. QuickTake Apple National regulators from across the European Union promised to give their verdict next month on the so-called privacy shield deal, which toughens EU protections where the U.S. is involved. The Apple case is raising concerns that the new plan doesn’t go far enough, regional politicians, officials and lawyers said.

That in turn could mean more deliberation and push back the completion date. Data-protection regulators will probably “be thinking about the FBI’s demands on Apple when reviewing the viability of the shield and its level of safeguards,” said Wim Nauwelaerts, a privacy lawyer at Hunton & Williams LLP in Brussels. Commercial Reasons ‘Just Terrible’ ‘Clear Limitations’ European Commission Wrongly Denies EPIC's Request For "Privacy Shield" EU EU Law FOIA foia Safe Harbor European Commission Wrongly Denies EPIC's Request For "Privacy Shield" The European Commission has wrongly denied EPIC's Freedom of Information request for the text of the "Privacy Shield. " The Commission said the adequacy decision about Safe Harbor is "in preparation" and "negotiations with the U.S. are still ongoing.

" The Privacy Shield – is it any good then? The Privacy Shield – is it any good then? « Privacy and information law blog. Federal judge: Apple doesn't have to unlock iPhone in N.Y. case. A federal magistrate in Brooklyn, New York, has denied the government’s application to force Apple to help law enforcement gain access to an iPhone belonging to a man who pled guilty in a meth conspiracy. The ruling is likely to bolster Apple’s resistance in California to a separate FBI request that the company help investigators circumvent security features on an iPhone used by one of the terrorists in the San Bernardino shootings.

Eu us privacy shield full text. The New EU-US Data Sharing Pact Still Allows Mass Surveillance. Max Schrems, left, and his lawyer Herwig Hofmann, right, walk in the hallway at the European Court of Justice in Luxembourg on Tuesday, Oct. 6, 2015. Image: Geert Vanden Wijngaert/AP. Privacy Shield details released. After two years of negotiations, and several major obstacles, including the invalidation of the Safe Harbor by a European court, the U.S. Department of Commerce released details today of the EU-U.S. The new EU - US Privacy Shield - Data protection and privacy global insights. By Lucy Tucker. Here's What U.S. Firms Will Have To Do Under EU Privacy Shield Deal. First Look: EU–U.S. Privacy Shield. On February 29, 2016, and after more than two years of negotiations with the U.S. European Commission Presents EU-U.S. Privacy Shield : : Privacy & Information Security Law Blog.

Statement of FTC Chairwoman Edith Ramirez on EU-U.S. Privacy Shield Framework. A Conversation on Privacy Shield with FTC Commissioner Brill. European Commission announces some detail on Privacy Shield scheme to replace Safe Harbor. Restoring trust in transatlantic data flows through strong safeguards: European Commission presents EU-U.S. Privacy Shield. The European Commission has issued the legal texts to put into effect the EU-U.S. Privacy Shield replacing safe harbor. Statement by Commissioner Věra Jourová on the signature of the Judicial Redress Act by President Obama. European Commission Wrongly Denies EPIC's Request For "Privacy Shield" United States sets out limits on its spying as part of new data pact with EU. European Commission unveils EU-U.S. Privacy Shield. Uncertainty over Privacy Shield as Facebook faces penalties.

Global Data Protection News February 2016 International Data Transfer & Privacy Shield Update. Transatlantic #data drama - Watch our interview with Max Schrems on #SafeHarbor. E-newsletter. Safe Harbor Safe? EU, US deadlocked on data privacy deal. Safe Harbor Deal Between EU and U.S. Not Yet Reached as Negotiations Continue : : Privacy & Information Security Law Blog. New Safe Harbor Deal Between EU and U.S. Reached : : Privacy & Information Security Law Blog. Safe Harbor crunch time: Today's the day to hammer out privacy deal. EU / US fail to agree Safe Harbor replacement within deadline « Privacy and information law blog.

Time to get serious about Europe’s sabotage of US terror intelligence programs. 20151222_Details_Umfrage_Safe_Harbor. EU and US divisions over data protection threaten agreement. U.S. lawmakers delay bill on European data privacy deal. Transfert de données : l'Europe penche vers plus de restrictions. Essentially Equivalent: A Comparison of the Legal Orders for Privacy and Data Protection in the European Union and United States. Post-Safe Harbor: What happens on Feb. 2? Safe harbor agreement ‘unlikely’ by deadline. EU News & policy debates, across languages. End-of-January deadline post-Safe Harbor enforcement. The Europocrisy Prize - Skating on Stilts. U.S. privacy 'ombudsman' idea floated in EU-U.S. data pact talks. V. DOJ: EPIC Prevails, DOJ Releases Secret EU-US Umbrella Agreement. "Clock is ticking" on Safe Harbor, says European Consumer Organization. EU-U.S. Data Transfers Threatened Amid Race for Safe-Harbor Deal.

Data privacy bill in Congress, trans-Atlantic deal elusive. Last-minute change to privacy bill adds tension to US-EU talks. Uncertainty clouds US and EU companies after data decision. Forbes Welcome. Forbes Welcome. Congressional Hearings on Surveillance Programs to Kick Off — in Secret. New data transfer deal could come by Monday. Trans-Atlantic data talks targeted by U.S. Republicans at 11th hour. Opinion: Forget about Safe Harbor. Modernize global privacy law instead.

Safe Harbor Aftermath - Never a Reason to Panic. New Safe Harbor Deal Possible by February 1. Post-Safe Harbor: Associations Write Open Letter to EU and the US. Tying it all together: Safe Harbor and Security-Related Data Flows. Running Aground in the Surveillance Safe Harbor - Podcast Available. Safe Harbor Resolution…Not So Fast.

No deal yet on Safe Harbor 2.0! Reminder: Safe Harbor Grace Period expired. Safe Harbor negotiators optimistic; Industry hopeful, but concerned. EU-U.S. Data Transfers Threatened Amid Race for Safe-Harbor Deal. EU / US fail to agree Safe Harbor replacement within deadline « Privacy and information law blog. EU-US-NGO-letter-Safe-Harbor-11-15. Safe Harbor aftermath - Never a reason to panic.