Two Developments For Privacy Shield Program For EU-US Data Transfers

BY Heather Greenfield
January 24, 2019

Brussels/Washington D.C. — European national data protection authorities today published their non-binding opinion on the EU-U.S. Privacy Shield Framework for commercial data transfers. The opinion acknowledges recent improvements of the transatlantic data framework, but also point to concerns.

Today’s report comes a month after the European Commission concluded that Privacy Shield “continues to ensure an adequate level of protection for personal data transferred […] to participating companies in the U.S.”

Last week the U.S. Administration also announced its intent to nominate Keith Krach as U.S. Under Secretary of State for Growth, Energy, and the Environment.  In this capacity, Krach will also serve as permanent Ombudsperson under the Privacy Shield, in part to respond to EU authorities’ request.

Privacy Shield allows more than 4,000 certified companies to transfer personal data for commercial purposes from Europe to the United States. This includes everything from human resource data to insurance claims.

The following can be attributed to CCIA President & CEO Ed Black:

The Computer & Communications Industry Association has been a longtime advocate for frameworks for data transfers with strong data protection safeguards.

“We are glad the White House intends to nominate Keith Krach to be Under Secretary of State for Growth, Energy, and the Environment, and to serve as Ombudsperson for the Privacy Shield Framework. This is an important step forward for thousands of companies and their customers that rely on Privacy Shield to transfer data from Europe to the U.S. We encourage the Senate to expedite confirming the ombudsman.”

The following can be attributed to CCIA Europe Senior Manager Alexandre Roure:

“We note the opinion issued by the European Data Protection Board, and are encouraged by their acknowledgment of recent improvements to strengthen Privacy Shield since its adoption in 2016. We concur with the European Commission that Privacy Shield provides robust privacy safeguards for the data flows that underpin the transatlantic economy.”

Related Articles

EU Top Court Strikes Down Privacy Shield, CCIA Calls for Urgent Legal Certainty and Solutions

Jul 16, 2020

Brussels, BELGIUM — The European Court of Justice (CJEU) issued a landmark ruling today that invalidates Privacy Shield, a key legal mechanism which thousands of companies use to transfer commercial data from the EU to the United States. The CJEU ruled that the Privacy Shield decision does not comply with EU law. Among other things,…

Senate Judiciary Advances Measure To Give Government Greater Control Over Online Content, Opens Risks For Online Security Through Patchwork Of State Laws

Jul 2, 2020

Washington — The Senate Judiciary Committee took a step toward approving legislation, S. 3398, the “Eliminating Abusive and Rampant Neglect of Interactive Technologies” (EARNIT) Act, which would weaken the law companies rely upon to address objectionable activity online, commonly referred to as Section 230. In March, when the bill was introduced, the Computer & Communications…

CCIA Provides Input to the EU’s Future Proposals on the Digital Services Act and Competition Tools

Jun 30, 2020

Brussels, BELGIUM — The Computer & Communications Industry Association welcomes the opportunity to respond to the European Commission’s calls for feedback on its future Digital Services Act (internal market rules and ex-ante measures) and proposal for new competition tools. The European Commission is expected to present legislative proposals before the end of the year. CCIA…