The EU-US Privacy Shield is up and running. From today U.S. companies needing to transfer personal data of European customers across the Atlantic can sign up to a new framework to govern such data transfers on www.privacyshield.gov.
The European Commission has also shared a citizens guide which aims at providing information how individuals' data protection rights are guaranteed and explaining the available remedies in case an individual considers that his personal data has been used without taking into account the data protection rules.
This new agreement has three main objectives:
- Robust Obligations for Companies’ Handling of EU Citizens’ Data
- Clear Safeguards and Transparency Obligations for US Government Agency Access
- New Redress and Complain Resolution Mechanisms for EU Citizens
The influential Working Party 29 body — which is made up of the heads of the various Member States’ data protection agencies — will have its first joint review of the framework in a year, couching it as a “key moment” for assessing the robustness and efficiency of the mechanism.