European Parliament Resolution Creates Unhelpful Doubts About EU-UK Data Flows 

Brussels, BELGIUM — A small majority of European Parliamentarians today approved a nonbinding political resolution that objects to the EU granting the United Kingdom “adequacy” status to transfer personal data between the EU and the United Kingdom. It is now up to the European Commission to adopt its draft adequacy decisions.  Data flows that are…

European Parliament Resolution Raises Doubt about EU-UK Data Flows

Brussels, BELGIUM — The European Parliament’s Civil Liberties, Justice and Home Affairs Committee (LIBE) today reportedly opined that the United Kingdom does not provide adequate privacy protection to allow the transfer of EU personal data. Under the terms of the EU-UK Trade and Cooperation Agreement, the UK is considered adequate until 30 June 2021. While…

CCIA Supports NIST’s Privacy Risk Management Framework

Washington — As the National Institute of Standards and Technology works to further develop its Privacy Risk Management Framework, CCIA offered a statement supporting this framework for risk-based mechanisms to improve privacy. The following can be attributed to CCIA Vice President of Public Policy Arthur Sidney:  “In the modern data-enabled economy, businesses work hard to…

EU Council e-Privacy Agreement Paves Way for Final Negotiations, CCIA Urges Further Improvements

Brussels, BELGIUM — The EU Member States (“EU Council”) today approved a joint position on the e-Privacy Regulation, originally proposed in 2017. This decision paves the way for final negotiations with the European Parliament and the European Commission. The proposed e-Privacy Regulation entails new privacy rules that will affect how Europeans consume online services from…

New EU Cybersecurity Rules Should Promote Security Mitigation, Avoid Compliance Red Tape

Brussels, BELGIUM — The European Commission published today a legislative proposal to update the 2016 Network and Information Security Directive.  The proposal aims to reduce regulatory inconsistencies across the EU’s internal market and it encourages security information sharing to help companies effectively address future cybersecurity risks. But the proposal also suggests that cloud computing providers,…