Norway's data protection authority, Datatilsynet, published revised guidance on international data transfers in the wake of the Court of Justice of the European Union's "Schrems II" decision. The guidance calls on companies to assess the basis for a transfer in advance of execution and apply additional technical, legal or organizational measures to protect data when necessary. Datatilsynet also noted it will not grant companies pre-approval for transfer impact assessments before they are completed.
7 Sept. 2021
Norwegian DPA updates data transfer guidance
RELATED STORIES
Privacy in Arkansas: Is Arkansas ready for a consumer privacy law?
A view from DC: CFPB calls for states to regulate financial privacy
Notes from the IAPP Canada: OPC's WADA investigation 'raises some interesting issues'
A view from Brussels: European Commission's new tech policy center of gravity
First fine imposed under Thailand's Personal Data Protection Act
