On Feb. 2, 2016, representatives of the European Commission and the United States agreed on a new framework for transatlantic data flow: the EU-US Privacy Shield, a new framework intended to replace the EU-US Safe Harbor that was invalidated as a result of a decision of the EU Court of Justice.
Improvements to the first Privacy Shield include better data retention provisions and independent Ombudsman, but Data Protection Authorities still cautious.
U.S. doing an “adequate” job for Privacy Shield but could be doing more to protect the data transfer of EU users, including reform of the FISA regulations.
Second annual review of the EU-U.S. Privacy Shield went better than the first, but the European Commission is still waiting on the U.S. government to nominate a permanent Ombudsperson to handle potential complaints and requests from EU citizens.
New Schrems privacy case could affect how global corporations carry out cross-border data transfers which may cause global trade and data flows to come to a halt.
With the Privacy Shield under fierce criticisms, there is now consideration for the European Commission to grant “adequacy” to an individual US state – California with it's CCPA.
Europe’s highest court will soon deliver a judgement on the 'Schrems II' case that could see the controversial Privacy Shield accord between the EU and the U.S. struck down.
Top court in Europe struck down the Privacy Shield agreement that governed EU-US data transfers and can potentially limits data sharing with other countries via companies in the US.