the Commission issued modernised standard contractual clauses under the GDPR for data transfers from controllers or processors in the EU/EEA (or otherwise subject to the GDPR) to controllers or processors established outside the EU/EEA (and not subject to the GDPR).
Standard contractual clauses
The European Commission will on Friday adopt revamped data transfer tools with more legal and privacy safeguards to allow companies to transfer Europeans’ data securely around the world.
Portuguese Data Protection Authority (CNPD) issued a decision ordering the suspension, within 12 hours, of any transfer of personal data resulting from the Census 2021 to the US, or to other third countries outside the EU not ensuring an adequate level of protection for the data
Bavarian DPA Declares Use E-mail Marketing Service Prohibited without Assessment and Supplementary Measures
Bavarian DPA declared the use of Mailchimp in Bavaria impermissible due to non-compliance with Schrems II mitigation steps in relation to the transfer of e-mail addresses to Mailchimp in the U.S.
The EDPB and EDPS have adopted joint opinions on two sets of contractual clauses (SCCs). One opinion on the SCCs for contracts between controllers and processors and one on the SCCs for the transfer of personal data to third countries.
In addition to issuing new (draft) standard contractual clauses for transferring personal data outside of the EEA, on November 12, the European Commission published a draft decision on standard contractual clauses between controllers and processors for the matters referred to in Article 28 of GDPR. Use of the Clauses is not compulsory, and controllers and […]
European privacy campaigner Max Schrems has been granted a judicial review of the Irish regulator’s handling of his complaint. He’s expecting the hearing to take place before the end of the year — and is hoping the action will, at long last, lead to a suspension of Facebook’s EU-US data transfers. Schrems says his aim […]
A revised mechanism for transferring EU data outside of the EU may be ready by Christmas, according to the EU’s digital chief. The new plan comes after the Schrems II ruling by the Court of Justice of the European Union in July, which invalidated the EU-US Privacy Shield transfer mechanism and upheld Standard Contractual Clauses […]
In wake of the “Schrems II” decision, this is what companies should think about when the European Commission releases revised standard contractual clauses. The most probable scenario for the additions to the SCCs is that the revised SCCs will contain an additional representation from the data exporter that it has verified — and is satisfied […]
Ireland’s data protection watchdog, the DPC, has sent Facebook a preliminary order to suspend data transfers from the EU to the US. The preliminary suspension order follows a landmark ruling by Europe’s top court this summer which both struck down a flagship data transfer arrangement between the EU and the US and cast doubt on […]