The European Commission released a report on whether safeguards for automated decision-making are adequate for data transfers under the EU-U.S. Privacy Shield agreement. Despite its different legal structure from the EU, the report found certain U.S. laws, specifically the Equal Credit Opportunity Act and the Fair Credit Reporting Act, offer protections against adverse decisions when companies use automation to process data to make a decision against an individual. The commission states those protections are similar to the ones seen in the EU General Data Protection Regulation; however, the body advises that business models using automated decision-making should be closely monitored. IAPP Research Director, General Counsel and Data Protection Officer Rita Heimes, CIPP/E, CIPP/US, CIPM, and Senior Westin Research Fellow Müge Fazlioglu, CIPP/E, CIPP/US, contributed to the report.
If you want to comment on this post, you need to login.