The European Commission adopted its adequacy decision for the EU-U.S. Data Privacy Framework, concluding it ensures U.S. protection of personal data transferred between the countries is comparable to that offered in the EU. But even as its finalization was announced Monday, the new framework is poised to face a legal challenge. IAPP Staff Writer Jennifer Bryant reported details and early reactions.
An FAQ published by the European Commission covers details of the framework, including criteria to assess adequacy, limitations and safeguards to data access by U.S. intelligence agencies, the framework's new redress mechanism and how individuals can use it, and more.
In a blog post for the Cross-Border Data Forum, Chair of Law and Ethics at the Georgia Tech School of Cybersecurity and Privacy Peter Swire, CIPP/US, commented on the designation of the EU and European Economic Area as "qualifying states."
In a statement, U.S. President Biden said he welcomed the adequacy decision, noting it reflects the U.S. and EU's "joint commitment to strong data privacy protections and will create greater economic opportunities for our countries and companies on both sides of the Atlantic."
If you want to comment on this post, you need to login.