Tag Archives: Schrems II

German Supervisory Authorities Plan to Circulate Questionnaires on Personal Data Transfers in Wake of Schrems II Decision

On February 3, 2021, the Conference of the Supervisory Authorities (“SAs”) of Germany (known as the Datenschutzkonferenz or “DSK”) published minutes from its meetings held in November 2020 (available here, in German). The minutes include discussions about how the German SAs plan to enforce the recent Schrems II ruling of the Court of Justice of … Continue Reading

EDPB adopts recommendations on international data transfers following Schrems II decision

By Dan Cooper, Lisa Peets, Marty Hansen and Sam Jungyun Choi on November 12, 2020 Posted in Cross-Border Transfers, Data, Data Privacy, EU Data Protection, European Union

On 11 November 2020, the European Data Protection Board (“EDPB”) issued two draft recommendations relating to the rules on how organizations may lawfully transfer personal data from the EU to countries outside the EU (“third countries”). These draft recommendations, which are non-final and open for public consultation until 30 November 2020, follow the EU Court … Continue Reading

New Guidelines for Companies from German Supervisory Authority (DPA-BW) following Schrems II

By Lars Lensdorf and Daniel Röll on October 12, 2020 Posted in Cross-Border Transfers, Data Privacy, EU Data Protection, European Union, Privacy and Data Security

On September 7, 2020, the German data protection supervisory authority for Baden-Wuerttemberg (“DPA-BW”) released new guidelines following the Schrems II judgment on how companies should transfer data to third countries. For a more in-depth summary of the CJEU’s Schrems II decision, please see our previous blog post here and our audiocast episode here.… Continue Reading

U.S. Government Issues White Paper on Privacy Safeguards Following Schrems II

By David Bender on September 30, 2020 Posted in Department of Commerce, Electronic Surveillance and Law Enforcement Access, European Union, International

In the wake of the Court of Justice of the European Union’s (“ECJ”) Schrems II decision invalidating the EU-U.S. Privacy Shield (“Privacy Shield”) but upholding the validity of standard contractual clauses (“SCCs”), the U.S. government has released a White Paper entitled “Information on U.S. Privacy Safeguards Relevant to SCCs and Other EU Legal Bases for … Continue Reading

Life After Schrems II: Practical Recommendations In An Uncertain Time

By Dan Cooper, Kristof Van Quathem and Nicholas Shepherd on September 4, 2020 Posted in Cross-Border Transfers, Data Privacy, EU Data Protection, European Union, Privacy and Data Security

On 16 July, 2020, the Court of Justice of the EU (“CJEU”), issued its decision in the Schrems II case. In short, the CJEU invalidated the EU-U.S. Privacy Shield and clarified that the use of standard contractual clauses (“SCCs”) requires data controllers to conduct a case-by-case assessment of the level of data protection that SCCs … Continue Reading

European Commission Publishes 2-Year Report on the Implementation of the GDPR

By Dan Cooper, Kristof Van Quathem, Nicholas Shepherd and Anna Oberschelp de Meneses on June 25, 2020 Posted in Data Privacy, EU Data Protection, European Union, Internet of Things (IoT), Online Targeting, Privacy and Data Security

On June 24, 2020, the European Commission (“Commission”) published its much-anticipated assessment of the EU’s General Data Protection Regulation (“GDPR”) two years after it went into effect. The assessment takes into account contributions from the European Council, the European Parliament, the European Data Protection Board (“EDPB”), individual supervisory authorities, the Multi-Stakeholder Expert Group and other … Continue Reading