- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Kyle Brasseur2023-07-10T17:41:00
The European Commission on Monday announced it adopted a new agreement with the United States to allow for transatlantic data flows without fear of violating the European Union’s General Data Protection Regulation (GDPR).
The EU-U.S. Data Privacy Framework allows for participating companies to transfer data between the two regions without having to put in place additional data protection safeguards, said the European Commission in a press release. The framework was agreed to in principle in 2022 after previous iterations, including the Privacy Shield, were scrapped by the Court of Justice of the European Union (CJEU) over U.S. surveillance concerns.
The new framework seeks to address those concerns through safeguards limiting access to EU data by U.S. intelligence services and the formation of a review court that can call for the deletion of EU citizens’ data if it is found to be collected in violation of the safeguards. The framework advanced to adequacy despite pushback from European Parliament and others as part of the approval process.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
Register for free
Receive the CW newsletter and access CPE webcasts.
Microsoft announced an expansion to its European Union data storage efforts that would allow cloud customers to keep all personal data stored within the EU boundary.
The European Commission might have given a green light to the latest mechanism to allow safe data transfers between the European Union and the United States, but experts have mixed views regarding how long it will last and whether it is even legal.
Meta’s latest punishment for breaching the European Union’s General Data Protection Regulation will have far-reaching ramifications for companies both in Europe and beyond.
Michael Macko, deputy director of enforcement at the California Privacy Protection Agency, described priorities for the agency now and in the near future during a recent board meeting.
Eight large companies, including Mastercard and JPMorgan Chase, have been ordered by the Federal Trade Commission to provide detailed reports about their possibly secret use of artificial intelligence to track customers and use the information to set prices.
Facial recognition company Clearview AI reached a preliminary settlement in a class action lawsuit alleging it violated the Illinois Biometric Privacy Act, with the company agreeing to compensate victims with stake in the company.
