Yesterday the European Commission formally approved the EU-US Privacy Shield, making transfers of personal data to the US legal under European law for companies that have certified to the framework.
So, what have businesses been doing to date? Businesses have been switching – or are switching – to other legal solutions so they are able to transfer personal data to the US in a bid to avoid any issues with the decision invalidating Safe Harbour by the Court of Justice of the European Union (CJEU). Those legal solutions include EU-prescribed Model Clauses. Now, if organisations choose to stay on these model clauses, nothing will change, and they can still use them to support data transfers globally.
Leave a reply