Safe Harbor

29 July 2016 at 4:02pm

Data exports: update in 2017

Andrew Cormack
Data Protection Act
Safe Harbor
Privacy Shield
The latest announcement from the Article 29 Working Party on the US-EU Privacy Shield also suggests that there shouldn't be any short-term surprises for those using the other justifications for exporting personal data to the USA.
Read more
14 April 2016 at 9:23am

Privacy Shield – Unfinished Business

Andrew Cormack
Data Protection Directive
Data Protection Regulation
Safe Harbor
The Article 29 Working Party’s new Opinion on the US–EU Privacy Shield draft adequacy decision leaves a lot of questions unanswered and further prolongs the period of uncertainty for anyone transferring personal data from Europe to the USA.
Read more
29 February 2016 at 2:40pm

Safe Harbor/Privacy Shield

Andrew Cormack
Data Protection Act
Data Protection Regulation
Safe Harbor
The European Commission has now published draft texts that could be used to implement an EU/US Privacy Shield to replace the previous Safe Harbor agreement. It appears that the new scheme would only cover "commercial exchanges" of personal data between the EU and US so it is unlikely to be appropriate for export of personal data to US universities or non-profit organisations.
Read more
12 February 2016 at 9:29am

Safe Harbor: Advice Postponed

Andrew Cormack
Data Protection Act
Data Protection Regulation
Safe Harbor
Cloud computing
The Article 29 Working Party of European data protection supervisors had hoped to make a full statement on the EU/US Safe Harbor agreement at the end of January. However this has now been postponed, probably until mid-April. The European Court of Justice declared last October that the original Safe Harbor did not guarantee adequate protection when personal data were transferred from Europe to the USA.
Read more
29 October 2015 at 4:13pm

ICO on Safe Harbor judgment

Andrew Cormack
Data Protection Act
Safe Harbor
The Information Commissioner's Office has published a new article on how they are responding to the European Court's Safe Harbor judgment. The overall message is that data controllers should take stock and not panic. While noting that the judgment does remove some of the former legal certainty, the ICO is "certainly not rushing to use our enforcement powers".
Read more
19 October 2015 at 4:56pm

Article 29 Working Party on Safe Harbor

Andrew Cormack
Data Protection Act
Data Protection Regulation
Safe Harbor
The Article 29 Working Party of European Data Protection supervisors has now published its response to the European Court's ruling that the US-EU Safe Harbor agreement can no longer be relied upon when exporting personal data from the European Economic Area.
Read more
14 October 2015 at 1:45pm

Safe Harbor at the European Court

Andrew Cormack
Data Protection Regulation
Data Protection Act
Safe Harbor
The European Court's declaration today that the European Commission's fifteen year old decision on the US Safe Harbor scheme is no longer reliable is another recognition that Data Protection requires continuing assessment, rather than one-off decisions. European regulators have been recommending for years that neither data controllers nor companies to which they export data should rely on Safe Harbor certification alone. The U.K.
Read more
Subscribe to Safe Harbor