Summary:
The European Union and the US have settled on a new transatlantic data-sharing pact.
The decision comes three years after the EU’s top court struck down the Privacy Shield, a protocol that let companies based in the US collect and process data from EU citizens. At the time, the court said the Privacy Shield didn’t do enough to keep users’ data out of the hands of US intelligence agencies.
The new EU-US Data Privacy Framework should protect companies from facing similar penalties so long as they commit to it. In addition to limiting the amount of overseas data that US intelligence can gain access to, the new framework establishes a Data Protection Review Court (DPRC) that can “independently investigate and resolve complaints” as well as order the deletion of data.
Going forward, it’s not clear whether this policy will stand up to the EU’s court, as two previous attempts to establish a new framework were thrown out by judges.
Thanks for the summary!
There goes the “I moved to Germany, delete my data under GDPR” loophole…
You can still request deletion based on GDPR, and they still have to fulfill that request.
Oh really? I thought you actually had to be an EU resident, or at least connecting from an EU location (and legally speaking, not from a VPN)?
Hum I don’t know why but feels like a step backwards for Europe in regards to privacy. The comment about Meta viewing this positively doesn’t smell good …
Does that mean Instagram will be allowed to launch Threads in the EU?
Shame, hope they go back on this.
2 of the Five Eyes? I wouldn’t plan on that.
The EU is not part of the FVEY, so it’s a cyclops agreement.
Yeah for some reason I thought this was about the UK and not the EU, hence why I deleted the comment.
Countdown to next Shrems case in 3… 2…
I’m sure the people of the EU agreed to this. I guess they’ll be happy
/s
Yes