The Court of Justice of the European Union’s recent decision in Data Protection Commissioner v. Facebook Ireland and Maximilian Schrems (Schrems II) changes the way that companies that transfer data between the EU and United States do business. With the EU’s highest court invalidating the EU-U.S. data flows arrangement, Privacy Shield, and additional restrictions placed on the use of the standard contractual clauses, concerns remain over the United States’ use of surveillance regimes and their perceived incompatibility with EU law. This implications of the decision are far-reaching, forcing any company that does business between the EU and the United States (or other jurisdictions) to re-evaluate if and how they can transfer personal data out of the EU and whether they can still use an alternative mechanism of private agreements, or standard contractual clauses, to accomplish this purpose.
This webinar will provide attendees with insight into:
Evaluating how and if it is appropriate to transfer data from the EU
Considering contractual updates with customers and vendors
The decision’s impact on commerce with the UK in light of Brexit