The European Commission decided on new Standard Contractual Clauses (SCCs) in June 2021. After 27 December 2022, only these “new” SCCs may be used without exception. What does that mean for companies and organizations? If personal data is transferred to processors (or their sub-processors) or to controllers in a country outside the EU or the […]
standard contractual clauses
The CJEU rules in favour of Schrems and invalidates Privacy Shield Decision
In a landmark ruling (‘Data Protection Commissioner v Facebook Ireland and Maximilian Schrems’)[1], the CJEU invalidated the Privacy Shield Decision[2], whereby the Commission had determined that the United States ensured an adequate level of protection for personal data transferred from the Union to organisations in the US. Many organisations involved in transborder data transactions will […]
Deal or No Deal, Brexit is Coming
Whether or not the United Kingdom (UK) and the European Union (EU) can agree on an exit deal, the UK will be leaving the EU come March 30, 2019. Although the UK plans to incorporate the General Data Protection Regulation (GDPR) into national law there will still be some data privacy issues that arise as […]