- Camilla Winlo, Director of Consulting Services, DQM GRC
- Preston Bukaty, GDPR Consultant, IT Governance USA
In the wake of complaints from the Austrian privacy activist Max Schrems, who argued that the US government’s mass surveillance practices contradict the protections that the EU–US Privacy Shield was supposed to provide for organisations that make transatlantic personal data transfers, the ECJ (European Court of Justice) ruled that the Privacy Shield is no longer valid.
It also ruled that EU SCCs (standard contractual clauses), also known as model clauses, are valid in principle but not always in practice, depending on the circumstances of those data transfers. This also causes problems for EU-based organisations that intend to transfer personal data to and from the US.
As US organisations rely on SCCs to receive personal data from the EU, they must carefully consider the legal basis for transfers of data.
Join our experts on this webinar to learn about the practical implications around data transfer requirements following the Schrems II ruling that your organisation must consider.
The webinar covers:
- The Schrems II decision regarding transfers of data;
- The implications for EU and US data controllers’ data transfer processes;
- The type of data transfers organisations should consider;
- Data flows and the legal basis for EU–US data transfers;
- Practical steps organisations can take now; and
- What the future of Schrems II bring.