fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " data transfer "

Irish DPA asks Supreme Court to uphold ruling in Facebook case

Facebook wants to alter High Court findings on issues concerning the validity of EU-US data transfer channels because it “doesn’t like them” and does not want them put before the Court of Justice European Union (CJEU), the Data Protection Commissioner has told the Supreme Court.

A core issue in Facebook’s appeal is whether there is any legal entitlement to appeal a referral to the CJEU.

Source: Facebook wants to alter findings because ‘it doesn’t like them’, court told

Department of Commerce Updates Privacy Shield FAQs to Clarify Applicability to UK Personal Data

On December 20, 2018, the Department of Commerce updated its frequently asked questions on the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks to clarify the effect of the UK’s planned withdrawal from the EU on March 29, 2019.

The FAQs provide information on the steps Privacy Shield participants must take to receive personal data from the UK in reliance on the Privacy Shield after such time.

Source: Department of Commerce Updates Privacy Shield FAQs to Clarify Applicability to UK Personal Data | Privacy & Information Security Law Blog

The four scenarios of Data Protection and a no deal Brexit

With Brexit talks still up in the air, Data Protection People look at the several scenarios that could play out for data protection professionals in the UK. Hard Brexit The Outsourced DPO has been looking at the impact of a hard Brexit for some of his clients – what a roller coaster ride that is.

Full article: The four scenarios of Data Protection and a no deal Brexit

Parliament fails to approve the EU Withdrawal Agreement: Data protection implications

On 25 November 2018 the UK Government and the EU agreed a draft withdrawal agreement which set out the terms of the UK’s departure from the EU and made a political declaration on the framework for their future relationship, as provided for under Article 50(2) of the Treaty on European Union ( Withdrawal Agreement ).

The purpose of the Withdrawal Agreement is to set out the terms of the UK’s departure from the EU and provide a transition period during which a more nuanced and ambitious future relationship can be agreed.

Full article: Parliament fails to approve the EU Withdrawal Agreement: Data protection implications

Irish Data Protection Advisory Releases Guidance on Data Consequences following ‘No Deal Brexit’

Guidance on what should happen with transfers of personal data to and from the United Kingdom, including Northern Ireland, following a possible ‘no deal’ Brexit has been published by the Irish Data Protection Commission (DPC).

The organisation warned that Irish and Irish-based companies that manage private personal data will be required to ensure data being transferred to the UK is done so lawfully following a possible March 29 date the UK leaving the European Union. From that date, in the event of no exit deal being agreed, the UK must be treated as any other non-EU State and would not enjoy the existing free movement of data that it currently does.

Full article: Irish Data Protection Advisory Releases Guidance on Data Consequences following ‘No Deal Brexit’ – Compliance Junction

The UK will have to renegotiate data protection relationships with EEA countries

UK government says that at the end of the transitional period, the EEA agreement will no longer be applicable and the UK will seek a new arrangement with the EEA countries Norway, Iceland and Liechtenstein.

The EU will start its assessment of the UK’s adequacy for international data transfers as soon as possible after Brexit. The UK is ready to start these assessments, the government says.

Source: The UK will have to renegotiate data protection relationships with EEA countries – Privacy Laws & Business

CNIL Publishes Guidance on Data Sharing with Business Partners or Data Brokers

On December 28, 2018, the French Data Protection Authority (the “CNIL”) published guidance regarding the conditions to be met by organizations in order to lawfully share personal data with business partners or other third parties, such as data brokers.

Full article: CNIL Publishes Guidance on Data Sharing with Business Partners or Data Brokers

Government issues draft data protection legislation to deal with Brexit

The draft legislation, The data protection, privacy and electronic communications (amendments etc) (EU exit) regulations 2019, have been prepared to ensure that the UK data protection legal framework continues to function correctly after Brexit.

The instrument amends the Privacy and Electronic Communications Regulations 2003 (PECR), UK GDPR and the DP Act 2018.

Source: Government issues draft data protection legislation to deal with Brexit – Privacy Laws & Business

New FPF Study Documents More Than 150 European Companies Participating in the EU-US Data Transfer Mechanism

Week ago the European Commission published its second annual review of the EU-U.S. Privacy Shield, finding that “the U.S. continues to ensure an adequate level of protection for personal data transferred under the Privacy Shield from the EU to participating companies in the U.S.” The decision preserves a key data transfer agreement, supporting transatlantic trade and ensuring meaningful privacy safeguards for consumers.

Full article: New FPF Study Documents More Than 150 European Companies Participating in the EU-US Data Transfer Mechanism

>