This article by Littler explains the data transfer framework established by the EU General Data Protection Regulation, describes key elements of the Court of Justice of the European Union’s "Schrems II" decision, and identifies its most critical implications for transfers of human resources data from the EU to the U.S.
CJEU 'Schrems II' Judgment: Action Steps for US Multinational Employers to Keep HR Data Transfers on Track
Approved
CIPM, CIPP/A, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPT
Credits: 2
Related Stories
Frequently Asked Questions & Resources on ‘Schrems II’
The IAPP is publishing these frequently asked questions and links to relevant resources from government authorities and privacy practitioners as a resource for privacy professionals working to respond to this significant court decision....
Guidance notes for responding to ‘Schrems II’
A series of guidance notes from Baker McKenzie on the CJEU's "Schrems II" decision is now available through the IAPP Resource Center....
DPA and government guidance on ‘Schrems II’
This IAPP Resource Center page collects together DPA and government guidance on 'Schrems II' as it comes out. The IAPP will continue to update this page as new guidance emerges....
Infographic: The impact of the CJEU’s decision on 'Schrems II'
Published: July 2020Click To View (PDF)Click To View (JPG)
The Court of Justice of the European Union declared the EU-U.S. Privacy Shield arrangement is invalid. However, it did uphold the validity of standard contractual clauses, with a caveat: the third country to which EU data is transferred m...
'Schrems II': How to protect against liability when using non-EEA vendors
1
In a recent "Schrems II" webinar, a vast majority of participants expressed concern about the risks associated with cloud-based processing of cleartext EU data and remote access to EU data for business purposes. In follow-up meetings and discussions with representatives from hundreds of companies, g...