Privacy Shield should be suspended, say MEPs

Committee cites Cambridge Analytica scandal and CLOUD Act as obstacles

Privacy Shield, the agreement underpinning data transfers from Europe to America, must be suspended if the US does not fully meet its obligations come 1 September, MEPs voted last night.

The Civil Liberties (Libe) Committee's decision isn't binding, but puts pressure on the European Commission to ensure the data-transfer arrangement is being honoured by US authorities.

Advertisement - Article continues below

Drawn up to replace the abandoned Safe Harbor agreement in 2016 after that deal was brought down by a legal challenge, Privacy Shield now faces obstacles of its own.

Designed to extend EU-like data protection to European residents' data transferred to the US, now the Libe Committee believes the new agreement fails to provide that protection as well.

"While progress has been made to improve on the Safe Harbor agreement, the Privacy Shield in its current form does not provide the adequate level of protection required by EU data protection law and the EU Charter," said Libe Committee member Claude Moraes.

"It is therefore up to the US authorities to effectively follow the terms of the agreement and for the Commission to take measures to ensure that it will fully comply with the GDPR."

MEPs raised their concerns following the Cambridge Analytica scandal affecting Facebook, about which the social network's CEO, Mark Zuckerberg, gave evidence to the European Parliament recently.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

While the incident pre-dates Privacy Shield, it was concerned about US authorities' ability to monitor US firms' compliance with the agreement, given both Cambridge Analytica's affiliate company, SCL Elections, and Facebook are both still listed on Privacy Shield.

SCL Elections still listed on Privacy Shield

MEPs also said they're concerned about a new US law called the CLOUD Act, which gives US authorities the right to access data stored in foreign locations, as long as the organisation storing it is American.

The Libe Committee said this could clash with EU law on data protection.

Picture: Bigstock

Featured Resources

Preparing for long-term remote working after COVID-19

Learn how to safely and securely enable your remote workforce

Download now

Cloud vs on-premise storage: What’s right for you?

Key considerations driving document storage decisions for businesses

Download now

Staying ahead of the game in the world of data

Create successful marketing campaigns by understanding your customers better

Download now

Transforming productivity

Solutions that facilitate work at full speed

Download now
Advertisement

Recommended

Visit/policy-legislation/general-data-protection-regulation-gdpr/355337/ico-will-reduce-gdpr-fines-due-to
General Data Protection Regulation (GDPR)

ICO to relax GDPR enforcement during coronavirus economic downturn

16 Apr 2020
Visit/security/privacy/355304/nhs-working-with-apple-google-coronavirus-tracking-app
privacy

The NHS teams up with Apple and Google on coronavirus tracking app

14 Apr 2020
Visit/policy-legislation/data-protection/355250/health-sites-sharing-users-medical-data-with-major-tech
data protection

Health sites are 'unlawfully' sharing medical data with Facebook and Google

7 Apr 2020
Visit/policy-legislation/data-protection/355184/supreme-court-finds-morrisons-was-not-liable-for-2014
data protection

Supreme Court rules Morrisons was not liable for 2014 data breach

1 Apr 2020

Most Popular

Visit/business/business-operations/356395/nvidia-overtakes-intel-as-most-valuable-us-chipmaker
Business operations

Nvidia overtakes Intel as most valuable US chipmaker

9 Jul 2020
Visit/laptops/29190/how-to-find-ram-speed-size-and-type
Laptops

How to find RAM speed, size and type

24 Jun 2020
Visit/server-storage/servers/356083/the-best-server-solution-for-your-smb
Sponsored

The best server solution for your SMB

26 Jun 2020