Securities Exchange Commission

Switzerland and United Kingdom Issue Guidance for Data Transfers to SEC 

Businesses and organizations registered with the U.S. Securities and Exchange Commission are often required to share personally identifiable information (PII) with the regulatory body.  But for entities that have operations outside of the U.S., complying with SEC requests has created a legal conundrum since the European Court of Justice’s Schrems 2.0 ruling–which invalidated the EU-U.S.…
Read More
SCC

How to Comply With the EU’s New SCC Framework

Since the Schrems 2.0 decision, any organization involved in the international transfer of personal data between the EU and America has been eagerly awaiting a new set of Standard Contractual Clauses (SCCs). In short, the SCCs previously used for such transfers were written before the implementation of the EU’s General Data Protection Regulation (GDPR), so…
Read More

EU Releases Draft Decision on UK Data Privacy Standards

Since the start of 2021, post-Brexit data relationships between the European Union and the United Kingdom have been governed by The EU-UK Trade and Cooperation Agreement, which established a 4-6 month temporary period where data could flow freely between the two jurisdictions.  Beyond that, the future was unclear. The grace period could have been extended…
Read More

A Guide to New Draft SCCs–and the EDPB’s Response

Ever since the EU-US Privacy Shield was struck down in Schrems 2.o, companies have been scrambling to figure out how to safely transfer data in and out of the EU while remaining compliant with the General Data Protection Regulation (GDPR). At this point, the general consensus is that transfers from the EU should only be…
Read More

2020 News in Review

Week Ending December 28  ICO Warns SolarWinds Victims to Report Breaches  The United Kingdom’s Information Commissioner’s Office (ICO) has issued a warning to organizations compromised by the SolarWinds breach. The breach, which was carried out by Russian hackers, affected more than 18000 organizations worldwide. ICO requires UK data controllers subject to NIS regulations to report…
Read More

2021 Forecast for Data Privacy Legislation

2020 was a massive year for data privacy. New laws became effective all around the world and, in turn, organizations were forced to amp up their data privacy measures to comply. Data privacy regulations are only getting stricter, and that won’t change any time soon. There is no reason to expect 2021 to be any…
Read More
Privacy Shield

A New Framework for a Post-Privacy Shield Era

Since the Schrems 2.0 case ended the EU-US Privacy Shield agreement, the companies that relied on the framework to transfer data between Europe and the U.S. have been left wondering what to do next. Can companies still rely on Standard Contractual Clauses (SCCs) for data transfers? If not, what alternatives do they have? The European…
Read More
Back To Top