Tag Archives for " data transfer "

PNR Agreements between Fundamental Rights and National Security

On July 26, 2017, the European Court of Justice (ECJ) issued Opinion 1/15 (the Opinion of the Advocate General on this case had been discussed previously in this blog, part I and part II) pursuant to Article 218(11) TFEU on the draft agreement between Canada and the European Union (EU) dealing with the Transfer of Passenger Name Record (PNR) data from the EU to Canada.

Source: PNR Agreements between Fundamental Rights and National Security: Opinion 1/15 | European Law Blog

Standard contractual clauses challenged by GDPR and scrutinized by CJEU

The EU Standard contractual clauses have been the most frequently used means for data transfers outside the EU. Under the EU General Data Protection Regulation (“GDPR”), which comes into effect in May this year, the EU Standard contractual clauses provide for “appropriate safeguards” validating transfer of personal data to a third country or an international organisation.

Source: Standard contractual clauses challenged by GDPR and scrutinized by CJEU – Lexology

Luxembourg DPA approves the BCR of PayPal

The PayPal Group has adopted Binding Corporate Rules, which define its global data protection policy with regard to international transfers of personal data. The purpose of these rules is to ensure that the same level of protection as in the EU is provided to employees and clients of PayPal when their personal data are transferred to entities within the same group located outside of the EU.

Source: The CNPD approves the BCR of PayPal — National Commission for Data Protection // Luxembourg

Tech Giants Back U.S. Bill Governing Cross-Border Data Searches

Microsoft Corp., Alphabet Inc.’s Google and Apple Inc. have thrown their support behind proposals in Congress to deal with cross-border data requests from law enforcement — even as the issue heads for review before the U.S. Supreme Court.

Source: Tech Giants Back U.S. Bill Governing Cross-Border Data Searches – Bloomberg

European Commission and Article 29 Working Party Urge Respect for International Law in Data Cases

Territoriality will continue to be one of the most vexing problems for data regulation in 2018. One aspect of this debate relates to whether a U.S. judge can compel the disclosure of personal data located in Europe without using international treaty mechanisms.

Source: European Commission and Article 29 Working Party Urge Respect for International Law in Data Cases

EU cities want Airbnb data

Eight European cities are writing to the European Commission to demand new rules for holiday rental platforms. Laurens Ivens, deputy mayor of Amsterdam, announced at the end of a two-day holiday rental conference that the cities involved will demand platforms such as Airbnb and Booking.com are legally obliged to share data with regulators, and new ‘quality rules’ mean hosts cannot be anonymous.

Source: Amsterdam, other EU cities, urge Brussels to take action on Airbnb data – DutchNews.nl

Top Data Governance Issues from 2017 and What to Watch in 2018

Having advised companies on privacy and data security issues for the past 20 years, it is always interesting to consider the previous year’s most significant industry events. In truth, we continue to press for resolution of the same issues year-after-year sometimes as to new technologies or applications. While the answer may be evasive, we moved further along the path of clarity in 2017 and will make further progress in 2018.

Source: 2017 Data Governance Issues

Will companies need to identify new lead supervisory authorities for their UK BCRs?

On Jan. 9, the European Commission’s Directorate-General for Justice and Consumers published a€œ “Notice to Stakeholders” on the intersection of Brexit and EU data protection rules. The guidance clarified, “€œTransfers based on approved standard data protection clauses or on binding corporate rules will not be subject to a further, specific authorisation from a supervisory authority.” One interpretation of this statement is that BCRs currently approved by the U.K. Information Commissioner’€™s Office will continue to be a compliant way to transfer data out of the EU after Brexit officially takes hold.

Source: Will companies need to identify new lead supervisory authorities for their UK BCRs?

EU Governments to Negotiate With Parliament Over Digital Economy Data Transfer Law

The Council of the European Union (EU Council), which represents the governments of the 28 EU member countries, has decided to open negotiations with the European Parliament on a new law to ease the flow of non-personal data. The draft regulation, which was issued by the European Commission—the EU’s executive branch—in September, is designed to strengthen the EU digital economy and single digital market.

Source: EU Governments to Negotiate With Parliament Over Digital Economy Data Transfer Law | Bloomberg BNA

1 2 3 9
>