The European Commission launched a privacy shield for the United States and the European Union (EU) on Tuesday to strengthen protection for transatlantic data flows.
The framework of the project protects the fundamental rights of anyone in the EU whose personal data is transferred to the United States and brings legal clarity for businesses relying on transatlantic data transfers.
“We have approved the new EU-U.S. Privacy Shield today,” Andrus Ansip, European Commission vice president for the digital single market, said. “It will protect the personal data of our people and provide clarity for businesses. We have worked hard with all our partners in Europe and in the US to get this deal right and to have it done as soon as possible. Data flows between our two continents are essential to our society and economy – we now have a robust framework ensuring these transfers take place in the best and safest conditions”.
Principles of the privacy shield include strong obligations on companies handling data, clear safeguards and transparency obligations on U.S. government access, effective protection of individuals rights, and utilizing an annual joint review mechanism.
On the U.S. side of the project, the privacy shield framework will be published in the federal register while the U.S. Department of Commerce will start operating the privacy shield. Companies will have until Aug. 1 to certify their compliance in the framework.